{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106249?format=json","vulnerability_id":"VCID-ys5x-t9na-jbfn","summary":"The p2m_pod_emergency_sweep function in arch/x86/mm/p2m-pod.c in Xen 3.4.x, 3.5.x, and 3.6.x is not preemptible, which allows local x86 HVM guest administrators to cause a denial of service (CPU consumption and possibly reboot) via crafted memory contents that triggers a \"time-consuming linear scan,\" related to Populate-on-Demand.","aliases":[{"alias":"CVE-2015-7970"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5038?format=json","purl":"pkg:deb/debian/xen@4.4.1-9%2Bdeb8u10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-apyu-g17x-4ybp"},{"vulnerability":"VCID-ry2w-4few-33bw"},{"vulnerability":"VCID-sd9a-4pc4-gyed"},{"vulnerability":"VCID-srmp-dqh8-gqgk"},{"vulnerability":"VCID-x25p-vy12-nkbe"},{"vulnerability":"VCID-zyd4-ebcu-6qdt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.4.1-9%252Bdeb8u10"},{"url":"http://public2.vulnerablecode.io/api/packages/135988?format=json","purl":"pkg:deb/debian/xen@4.6.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.6.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/135902?format=json","purl":"pkg:deb/debian/xen@4.14.6-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-27xc-hy1s-n7bf"},{"vulnerability":"VCID-2qbn-f381-abhx"},{"vulnerability":"VCID-2wu6-2tup-2ub2"},{"vulnerability":"VCID-339r-nmjn-gfa2"},{"vulnerability":"VCID-3nb3-3wud-jfhv"},{"vulnerability":"VCID-5qmr-dc83-fqb1"},{"vulnerability":"VCID-6uvb-67h4-1fgy"},{"vulnerability":"VCID-7yrz-z3a2-vkgg"},{"vulnerability":"VCID-8gj8-dga7-gkht"},{"vulnerability":"VCID-8r4d-1tcs-13gd"},{"vulnerability":"VCID-9g21-rc3r-5uer"},{"vulnerability":"VCID-c58r-gesb-f7hq"},{"vulnerability":"VCID-cgzn-pdre-1bec"},{"vulnerability":"VCID-cvj7-478z-x3b1"},{"vulnerability":"VCID-dke6-vwb6-fuf4"},{"vulnerability":"VCID-dwq4-9tk2-8yfp"},{"vulnerability":"VCID-f7v4-85sw-1keq"},{"vulnerability":"VCID-fwx8-9f5e-v7hw"},{"vulnerability":"VCID-jcpf-68kx-67fr"},{"vulnerability":"VCID-jm1q-fxpu-qbg3"},{"vulnerability":"VCID-k3xq-ruut-3yhw"},{"vulnerability":"VCID-k5qj-xcvq-5ke1"},{"vulnerability":"VCID-k6gh-hx5m-wba2"},{"vulnerability":"VCID-kcwp-bu7h-6kds"},{"vulnerability":"VCID-kpyj-6qpe-pbep"},{"vulnerability":"VCID-ma7k-xrxw-vubd"},{"vulnerability":"VCID-ma9d-b2uy-jkft"},{"vulnerability":"VCID-mvnt-qc9z-jygu"},{"vulnerability":"VCID-navq-t6wp-xqaf"},{"vulnerability":"VCID-rm4s-2uwv-tkac"},{"vulnerability":"VCID-rw5e-3s13-hycn"},{"vulnerability":"VCID-su6k-nv2m-yqac"},{"vulnerability":"VCID-swjx-x5hb-n3c2"},{"vulnerability":"VCID-sx9z-gbkd-8fgv"},{"vulnerability":"VCID-t5nz-98gp-7fa1"},{"vulnerability":"VCID-t63z-5wwn-1bh9"},{"vulnerability":"VCID-t9tt-yd4b-r3cy"},{"vulnerability":"VCID-u4yc-hhne-2kaz"},{"vulnerability":"VCID-vj8v-zms6-gug9"},{"vulnerability":"VCID-vkt6-fjzc-4uay"},{"vulnerability":"VCID-w8sx-m2vx-1ucv"},{"vulnerability":"VCID-wuca-6w96-kfdp"},{"vulnerability":"VCID-x9md-fcrv-y7d8"},{"vulnerability":"VCID-xa2b-k4ye-e7d3"},{"vulnerability":"VCID-yqrw-w2g9-2kf9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/135900?format=json","purl":"pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2qbn-f381-abhx"},{"vulnerability":"VCID-67uu-vpqg-gbc9"},{"vulnerability":"VCID-k5qj-xcvq-5ke1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/135904?format=json","purl":"pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5qmr-dc83-fqb1"},{"vulnerability":"VCID-67uu-vpqg-gbc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/135903?format=json","purl":"pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5qmr-dc83-fqb1"},{"vulnerability":"VCID-67uu-vpqg-gbc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/194755?format=json","purl":"pkg:ebuild/app-emulation/pvgrub@4.6.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/pvgrub@4.6.0"},{"url":"http://public2.vulnerablecode.io/api/packages/194756?format=json","purl":"pkg:ebuild/app-emulation/pvgrub@4.6.0-r9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/pvgrub@4.6.0-r9"},{"url":"http://public2.vulnerablecode.io/api/packages/194750?format=json","purl":"pkg:ebuild/app-emulation/xen@4.6.0-r9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen@4.6.0-r9"},{"url":"http://public2.vulnerablecode.io/api/packages/194751?format=json","purl":"pkg:ebuild/app-emulation/xen-pvgrub@4.6.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-pvgrub@4.6.0"},{"url":"http://public2.vulnerablecode.io/api/packages/194752?format=json","purl":"pkg:ebuild/app-emulation/xen-pvgrub@4.6.0-r9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-pvgrub@4.6.0-r9"},{"url":"http://public2.vulnerablecode.io/api/packages/194753?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.6.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.6.0"},{"url":"http://public2.vulnerablecode.io/api/packages/194754?format=json","purl":"pkg:ebuild/app-emulation/xen-tools@4.6.0-r9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/xen-tools@4.6.0-r9"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5035?format=json","purl":"pkg:deb/debian/xen@4.0.1-5.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1h7w-s59u-dkbc"},{"vulnerability":"VCID-2gad-npa6-vfh7"},{"vulnerability":"VCID-34v9-xnu9-8fcr"},{"vulnerability":"VCID-45zc-747z-87d2"},{"vulnerability":"VCID-4j4s-sp57-r3g1"},{"vulnerability":"VCID-4maf-w421-bfha"},{"vulnerability":"VCID-56fq-hqft-5yf5"},{"vulnerability":"VCID-5e41-v564-xub1"},{"vulnerability":"VCID-5y2g-8eny-ekd6"},{"vulnerability":"VCID-65we-sk2n-33dk"},{"vulnerability":"VCID-78km-zngh-1uaj"},{"vulnerability":"VCID-8nxh-krr5-eubw"},{"vulnerability":"VCID-8tg6-2qns-nkex"},{"vulnerability":"VCID-8wt6-5dee-cfcd"},{"vulnerability":"VCID-9592-x9wu-mycz"},{"vulnerability":"VCID-99jr-xuhp-k3fx"},{"vulnerability":"VCID-9ve5-wsvq-rfeg"},{"vulnerability":"VCID-a91z-faxn-jqaf"},{"vulnerability":"VCID-apyu-g17x-4ybp"},{"vulnerability":"VCID-aw2k-q233-4uep"},{"vulnerability":"VCID-b8fb-fbs9-tbcy"},{"vulnerability":"VCID-bk1v-ce52-mqbs"},{"vulnerability":"VCID-c4dv-qjd3-sud1"},{"vulnerability":"VCID-cqwg-b9mw-5bdm"},{"vulnerability":"VCID-dh1x-yd1b-uqcv"},{"vulnerability":"VCID-fad8-awfx-yqfp"},{"vulnerability":"VCID-fk6h-x5ms-7fd1"},{"vulnerability":"VCID-gquj-7vwr-zyew"},{"vulnerability":"VCID-hgka-14he-q3d4"},{"vulnerability":"VCID-hqzv-d83d-2fhj"},{"vulnerability":"VCID-jcer-nf9m-7qhy"},{"vulnerability":"VCID-jwgp-7zgd-h3cp"},{"vulnerability":"VCID-kkhz-hqgm-qyg4"},{"vulnerability":"VCID-kn3g-4r4n-9fab"},{"vulnerability":"VCID-kpvu-xw6s-k7be"},{"vulnerability":"VCID-krbw-dq3h-fya7"},{"vulnerability":"VCID-mbgw-rjmd-vkgg"},{"vulnerability":"VCID-mv3h-wuda-sfa7"},{"vulnerability":"VCID-p91y-jac2-23ca"},{"vulnerability":"VCID-pa4v-zfya-gbb6"},{"vulnerability":"VCID-r13t-3x2c-y7es"},{"vulnerability":"VCID-ry2w-4few-33bw"},{"vulnerability":"VCID-scrr-3jrg-m3ex"},{"vulnerability":"VCID-sd9a-4pc4-gyed"},{"vulnerability":"VCID-sey5-bveb-ufbf"},{"vulnerability":"VCID-srmp-dqh8-gqgk"},{"vulnerability":"VCID-t1ua-u6w8-53g7"},{"vulnerability":"VCID-u9sp-wzn5-audk"},{"vulnerability":"VCID-urj6-brbk-ukak"},{"vulnerability":"VCID-utm1-3457-cugt"},{"vulnerability":"VCID-vmzc-cygv-qqdc"},{"vulnerability":"VCID-w51u-vb3k-2qbs"},{"vulnerability":"VCID-x25p-vy12-nkbe"},{"vulnerability":"VCID-xewk-rbqw-hkeh"},{"vulnerability":"VCID-xtxb-z38n-e3f5"},{"vulnerability":"VCID-xw3e-9auh-2few"},{"vulnerability":"VCID-ys5x-t9na-jbfn"},{"vulnerability":"VCID-z9vg-mtyu-xydw"},{"vulnerability":"VCID-zyd4-ebcu-6qdt"},{"vulnerability":"VCID-zzhd-u555-qybz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.0.1-5.11"},{"url":"http://public2.vulnerablecode.io/api/packages/5036?format=json","purl":"pkg:deb/debian/xen@4.1.4-3%2Bdeb7u9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1h7w-s59u-dkbc"},{"vulnerability":"VCID-4j4s-sp57-r3g1"},{"vulnerability":"VCID-8nxh-krr5-eubw"},{"vulnerability":"VCID-8wt6-5dee-cfcd"},{"vulnerability":"VCID-apyu-g17x-4ybp"},{"vulnerability":"VCID-gquj-7vwr-zyew"},{"vulnerability":"VCID-jwgp-7zgd-h3cp"},{"vulnerability":"VCID-krbw-dq3h-fya7"},{"vulnerability":"VCID-ry2w-4few-33bw"},{"vulnerability":"VCID-sd9a-4pc4-gyed"},{"vulnerability":"VCID-srmp-dqh8-gqgk"},{"vulnerability":"VCID-utm1-3457-cugt"},{"vulnerability":"VCID-w51u-vb3k-2qbs"},{"vulnerability":"VCID-x25p-vy12-nkbe"},{"vulnerability":"VCID-xw3e-9auh-2few"},{"vulnerability":"VCID-ys5x-t9na-jbfn"},{"vulnerability":"VCID-zyd4-ebcu-6qdt"},{"vulnerability":"VCID-zzhd-u555-qybz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.1.4-3%252Bdeb7u9"},{"url":"http://public2.vulnerablecode.io/api/packages/5037?format=json","purl":"pkg:deb/debian/xen@4.4.1-9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1h7w-s59u-dkbc"},{"vulnerability":"VCID-4j4s-sp57-r3g1"},{"vulnerability":"VCID-8nxh-krr5-eubw"},{"vulnerability":"VCID-8wt6-5dee-cfcd"},{"vulnerability":"VCID-apyu-g17x-4ybp"},{"vulnerability":"VCID-gquj-7vwr-zyew"},{"vulnerability":"VCID-jwgp-7zgd-h3cp"},{"vulnerability":"VCID-krbw-dq3h-fya7"},{"vulnerability":"VCID-ry2w-4few-33bw"},{"vulnerability":"VCID-sd9a-4pc4-gyed"},{"vulnerability":"VCID-srmp-dqh8-gqgk"},{"vulnerability":"VCID-utm1-3457-cugt"},{"vulnerability":"VCID-w51u-vb3k-2qbs"},{"vulnerability":"VCID-x25p-vy12-nkbe"},{"vulnerability":"VCID-xw3e-9auh-2few"},{"vulnerability":"VCID-ys5x-t9na-jbfn"},{"vulnerability":"VCID-zyd4-ebcu-6qdt"},{"vulnerability":"VCID-zzhd-u555-qybz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.4.1-9"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7970.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7970.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7970","reference_id":"","reference_type":"","scores":[{"value":"0.00072","scoring_system":"epss","scoring_elements":"0.22021","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7970"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3259","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3259"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5307","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5307"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6654","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6654"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7311","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7311"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7812","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7812"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7813","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7813"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7814","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7814"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7969","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7969"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7970","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7970"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7971","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7971"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7972","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7972"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8104","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8104"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1272529","reference_id":"1272529","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1272529"},{"reference_url":"https://security.gentoo.org/glsa/201604-03","reference_id":"GLSA-201604-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201604-03"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-150.html","reference_id":"XSA-150","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-150.html"}],"weaknesses":[],"exploits":[],"severity_range_score":null,"exploitability":"0.5","weighted_severity":"0.0","risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ys5x-t9na-jbfn"}