High severity8.6NVD Advisory· Published Apr 13, 2016· Updated May 6, 2026
CVE-2015-8555
CVE-2015-8555
Description
Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- xenbits.xen.org/xsa/advisory-165.htmlnvdPatchVendor Advisory
- support.citrix.com/article/CTX203879nvd
- www.debian.org/security/2016/dsa-3519nvd
- www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlnvd
- www.securityfocus.com/bid/79543nvd
- www.securitytracker.com/id/1034477nvd
- security.gentoo.org/glsa/201604-03nvd
News mentions
0No linked articles in our index yet.