Xen Security Advisory 138 (CVE-2015-5154) - QEMU heap overflow flaw while processing certain ATAPI commands
http://seclists.org/oss-sec/2015/q3/212
Xen reports new guest-host escape, this time through CD-ROMs
http://www.theregister.co.uk/2015/07/28/xen_reports_new_guesthost_escape_this_time_through_cdroms/
RedHat - CVE-2015-5154
https://access.redhat.com/security/cve/CVE-2015-5154
Citrix XenServer Security Update for CVE-2015-5154
http://support.citrix.com/article/CTX201593
SUSE - CVE-2015-5154
https://www.suse.com/security/cve/CVE-2015-5154.html
Debian - CVE-2015-5154
https://security-tracker.debian.org/tracker/CVE-2015-5154