Security Advisory

CVE-2020-29485

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-15 17:26:05

Last updated 2024-08-04 16:55:10

Assigner mitre

State PUBLISHED

Description

An issue was discovered in Xen 4.6 through 4.14.x. When acting upon a guest XS_RESET_WATCHES request, not all tracking information is freed. A guest can cause unbounded memory usage in oxenstored. This can lead to a system-wide DoS. Only systems using the Ocaml Xenstored implementation are vulnerable. Systems using the C Xenstored implementation are not vulnerable.

← Browse all CVEs View on cve.org ↗