CVE-2021-28700

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-28700

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-28700.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-28700

Downstream

ALPINE-CVE-2021-28700

DEBIAN-CVE-2021-28700

DSA-4977-1

SUSE-SU-2021:2922-1

SUSE-SU-2021:2923-1

SUSE-SU-2021:2924-1

SUSE-SU-2021:2925-1

UBUNTU-CVE-2021-28700

openSUSE-SU-2021:1236-1

openSUSE-SU-2021:2923-1

Related

Withdrawn

2026-01-27T04:17:38.196477Z

Published

2021-08-27T19:15:07Z

Modified

2026-01-27T04:17:38.196477Z

Severity

4.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an administrator originally configured.

References

Affected packages