CVE-2021-28700
CVE-2021-28700
In short
In Xen's dom0less feature, unprivileged domains can allocate unlimited memory, bypassing the administrator's configured limits. This allows a single domain to consume all available memory and crash the entire system.
Technical detail
The dom0less feature in Xen/ARM fails to enforce memory limits on unprivileged domains created directly by the hypervisor. An authenticated domain administrator can trigger unbounded memory allocation, leading to resource exhaustion and denial of service across the virtualized environment. Mitigation requires explicit memory limit configuration at domain creation time.
Summary generated and translated by AI from the official description.
xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an administrator originally configured.
Affected products
Xen · xenWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2VQCFAPBNGBBAOMJZG6QBREOG5IIDZID/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FZCNPSRPGFCQRYE2BI4D4Q4SCE56ANV2/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LPRVHW4J4ZCPPOHZEWP5MOJT7XDGFFPJ/https://security.gentoo.org/glsa/202208-23https://www.debian.org/security/2021/dsa-4977https://xenbits.xenproject.org/xsa/advisory-383.txt