These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-23558 is a Xen hypervisor race condition that can occur when a guest changes grant table version from v2 to v1 while status pages are being mapped through XENMEM_add_to_physmap. According to the published description, the race can let some status pages be freed while mappings for them are still being inserted into the guest’s secondary page tables, creating a serious memory safety issue in the hy [truncated]
CVE-2026-23557 describes a denial-of-service condition in Xen’s xenstored component. According to the CVE record, any guest can cause xenstored to crash by sending an XS_RESET_WATCHES command within a transaction, which triggers an assert(). The record also notes an important build-time caveat: if xenstored was built with NDEBUG defined, assert() does nothing and the crash path is avoided; however, the de [truncated]
CVE-2016-9818 is a Xen vulnerability affecting ARM deployments in which a local guest OS user can trigger a denial of service by causing an asynchronous abort while the hypervisor is at HYP. The practical impact is a host crash, so this is primarily an availability issue for organizations running affected Xen versions on ARM systems. Vendor guidance and a patch were published alongside the vulnerability disclosure.
CVE-2016-9817 describes a denial-of-service issue in Xen on ARM systems. According to NVD, local ARM guest OS users on affected Xen 4.7.x hosts can cause the hypervisor to crash by provoking a data abort or prefetch abort with the ESR_EL2.EA bit set. The issue is availability-only but affects the host, so even a local-privilege attack inside a guest can take down the Xen host.
CVE-2016-9816 describes a denial-of-service issue in Xen on ARM systems where a local guest OS user can cause the host to crash by triggering an asynchronous abort while the hypervisor is running at EL2. NVD rates the issue 6.5 (medium) with local access and high availability impact. The record points to vendor advisory and patch material for Xen, and affected CPEs include Xen 4.7.0 and 4.7.1.
CVE-2016-9815 is a Xen vulnerability affecting ARM guest environments that can let a local guest user trigger a host panic, resulting in denial of service. The issue was published by the CVE program on 2017-02-27, and Xen’s advisory and patch references point to vendor remediation for affected 4.7.x deployments.
CVE-2016-9384 is a Xen information-disclosure issue affecting Xen 4.7.0 and 4.7.1. According to NVD, a local guest OS user can obtain sensitive host information by loading a 32-bit ELF symbol table. The published CVSS vector (AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N) reflects a local attack with low privileges, changed scope, and high confidentiality impact.
CVE-2016-9378 is a Xen availability issue affecting versions 4.5.x through 4.7.x on AMD systems without the NRip feature. A local HVM guest user can trigger a guest crash when Xen emulates certain instructions that generate software interrupts and selects the wrong delivery path.
CVE-2016-9377 is a Xen denial-of-service issue affecting Xen 4.5.x through 4.7.x on AMD systems that do not have the NRip feature. According to the CVE description and NVD data, a local user inside an HVM guest can cause a guest crash when Xen emulates instructions that generate software interrupts, due to an IDT entry miscalculation. The impact is availability-only and is rated medium severity in the sup [truncated]
Published on 2017-01-26, CVE-2016-9932 describes a Xen x86 hypervisor flaw where CMPXCHG8B emulation mishandles a supposedly ignored operand-size prefix. In affected Xen 3.3.x through 4.7.x builds, a local HVM guest user may be able to read sensitive information from host stack memory. The NVD record rates this as low severity (CVSS 3.3) and the provided vector limits impact to confidentiality, with no di [truncated]
CVE-2016-10025 is a Xen hypervisor denial-of-service issue affecting x86 systems using AMD virtualization extensions (SVM). NVD describes it as a missing NULL pointer check in VMFUNC emulation, which can let a local user inside an HVM guest crash the hypervisor. The impact is availability-only: no confidentiality or integrity impact is indicated by the CVSS vector. NVD published the record on 2017-01-26 a [truncated]
CVE-2016-10013 is a high-severity Xen vulnerability affecting 64-bit x86 HVM guests. According to the CVE description, mishandling of SYSCALL singlestep during emulation can let a local guest user gain privileges. This is primarily a concern for environments that run affected Xen releases and expose 64-bit x86 HVM guest workloads to potentially untrusted users. The CVE was published on 2017-01-26.
CVE-2016-9385 is a Xen hypervisor denial-of-service issue affecting x86 PV guest environments. According to NVD, a local attacker with high privileges inside a guest could trigger a host crash by abusing x86 segment base write emulation where canonical address checks were missing.
CVE-2016-9382 describes a Xen flaw in x86 task switching to VM86 mode. According to NVD, the issue affects Xen 4.0.x through 4.7.x and selected Citrix XenServer releases. A local user inside a 32-bit x86 HVM guest may be able to gain privileges or crash the guest OS, depending on how the guest operating system uses hardware task switching and starts new tasks in VM86 mode. NVD rates the issue HIGH with CV [truncated]