Debian Linux Security Advisory 3847-1 - Jan Beulich and Jann Horn discovered multiple vulnerabilities in the Xen hypervisor, which may lead to privilege escalation, guest-to-host breakout, denial of service or information leaks.
ef39c1de6d0ec5018cfe4cea5d3d68ce3dd8f308f08223198e250746818448e3
Xen suffers from a broken check in memory_exchange() that permits a PV guest breakout.
06a65900927d0ae50f499bf381cb1f57f6ac4ce13a285e0843a65faa968b723b