{"id":"CVE-2017-15591","details":"An issue was discovered in Xen 4.5.x through 4.9.x allowing attackers (who control a stub domain kernel or tool stack) to cause a denial of service (host OS crash) because of a missing comparison (of range start to range end) within the DMOP map/unmap implementation.","modified":"2026-03-14T01:38:48.994224Z","published":"2017-10-18T08:29:00.450Z","related":["SUSE-SU-2017:2864-1","SUSE-SU-2017:2873-1"],"references":[{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201801-14"},{"type":"FIX","url":"https://xenbits.xen.org/xsa/advisory-238.html"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"4.5.0"}]},{"events":[{"introduced":"0"},{"last_affected":"4.5.1"}]},{"events":[{"introduced":"0"},{"last_affected":"4.5.2"}]},{"events":[{"introduced":"0"},{"last_affected":"4.5.3"}]},{"events":[{"introduced":"0"},{"last_affected":"4.5.5"}]},{"events":[{"introduced":"0"},{"last_affected":"4.6.0"}]},{"events":[{"introduced":"0"},{"last_affected":"4.6.1"}]},{"events":[{"introduced":"0"},{"last_affected":"4.6.3"}]},{"events":[{"introduced":"0"},{"last_affected":"4.6.4"}]},{"events":[{"introduced":"0"},{"last_affected":"4.6.5"}]},{"events":[{"introduced":"0"},{"last_affected":"4.6.6"}]},{"events":[{"introduced":"0"},{"last_affected":"4.7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"4.7.1"}]},{"events":[{"introduced":"0"},{"last_affected":"4.7.2"}]},{"events":[{"introduced":"0"},{"last_affected":"4.7.3"}]},{"events":[{"introduced":"0"},{"last_affected":"4.8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"4.8.1"}]},{"events":[{"introduced":"0"},{"last_affected":"4.9.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-15591.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"}]}