CVE-2020-29568

Source
https://nvd.nist.gov/vuln/detail/CVE-2020-29568
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-29568.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2020-29568
Downstream
Related
Published
2020-12-15T17:15:14Z
Modified
2025-08-09T20:01:26Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are processing watch events using a single thread. If the events are received faster than the thread is able to handle, they will get queued. As the queue is unbounded, a guest may be able to trigger an OOM in the backend. All systems with a FreeBSD, Linux, or NetBSD (any version) dom0 are vulnerable.

References

Affected packages