{"id":"CVE-2015-4164","details":"The compat_iret function in Xen 3.1 through 4.5 iterates the wrong way through a loop, which allows local 32-bit PV guest administrators to cause a denial of service (large loop and system hang) via a hypercall_iret call with EFLAGS.VM set.","modified":"2026-04-16T01:44:06.955186135Z","published":"2015-06-15T15:59:13Z","withdrawn":"2026-01-27T04:15:02.723892Z","related":["SUSE-SU-2015:1042-1","SUSE-SU-2015:1045-1","SUSE-SU-2015:1156-1","SUSE-SU-2015:1157-1","SUSE-SU-2015:1479-1","SUSE-SU-2015:1479-2"],"references":[{"type":"ADVISORY","url":"http://www.debian.org/security/2015/dsa-3286"},{"type":"ADVISORY","url":"http://xenbits.xen.org/xsa/advisory-136.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201604-03"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00004.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00007.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00029.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00030.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00014.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00027.html"},{"type":"WEB","url":"http://support.citrix.com/article/CTX201145"},{"type":"WEB","url":"http://www.securityfocus.com/bid/75149"},{"type":"WEB","url":"http://www.securitytracker.com/id/1032569"}],"schema_version":"1.7.3"}