An issue was discovered in drivers/xen/balloon.c in the Linux kernel before 5.2.3, as used in Xen through 4.12.x, allowing guest OS users to cause a denial of service because of unrestricted resource consumption during the mapping of guest memory, aka CID-6ef36ab967c7.
4.4.0-174.2044.4.0-1102.1134.15.0-1047.49~16.04.14.15.0-1056.614.15.0-1041.434.15.0-60.67~16.04.14.4.0-1066.734.15.0-1022.25~16.04.14.4.0-1129.1384.4.0-1133.141Exploitability
AV:LAC:LPR:LUI:NScope
S:CImpact
C:NI:NA:HCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H