Home

Description

When oxenstored is tearing a domain down, the node data is cleaned up but the usage counts are leaked. When the domain ID is eventually reused, the new domain can create fewer nodes before beeing deemed to be over quota.

PUBLISHED Reserved 2026-01-14 | Published 2026-07-09 | Updated 2026-07-09 | Assigner XEN




CRITICAL: 9.4CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Problem types

CWE-281 Improper preservation of permissions

Product status

Default status
unaffected

all
affected

Credits

This issue was discovered by Andrii Sultanov of Vates. finder

References

www.openwall.com/lists/oss-security/2026/04/28/10

xenbits.xen.org/xsa/advisory-483.html

xenbits.xen.org/xsa/advisory-483.html

cve.org (CVE-2026-23556)

nvd.nist.gov (CVE-2026-23556)

Download JSON