CVE-2021-28700

Summary

xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an administrator originally configured.

Affected Software

VendorProductVersion RangeStatus
Xenxen4.12.xaffected
Xenxenunspecified < 4.12unknown
Xenxen4.13.x < unspecifiedaffected
Xenxennext of xen-unstable < unspecifiedunaffected

Weaknesses

  • unknown

ADP Enrichment

CVE Program Container

Additional References

References