Search...

Fedora Update for xen FEDORA-2015-11247

2015-07-19T00:00:00

ID OPENVAS:1361412562310869777
Type openvas
Reporter Copyright (C) 2015 Greenbone Networks GmbH
Modified 2017-07-10T00:00:00

Description

Check the version of xen

                                        
                                            ###############################################################################
# OpenVAS Vulnerability Test
#
# Fedora Update for xen FEDORA-2015-11247
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.869777");
  script_version("$Revision: 6630 $");
  script_tag(name:"last_modification", value:"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $");
  script_tag(name:"creation_date", value:"2015-07-19 06:37:48 +0200 (Sun, 19 Jul 2015)");
  script_cve_id("CVE-2015-3259", "CVE-2015-3209", "CVE-2015-4163", "CVE-2015-4164",
                "CVE-2015-4103", "CVE-2015-4104", "CVE-2015-4105", "CVE-2015-4106",
                "CVE-2015-3456", "CVE-2015-3340", "CVE-2015-2752", "CVE-2015-2756",
                "CVE-2015-2751", "CVE-2015-2152", "CVE-2015-2151", "CVE-2015-1563",
                "CVE-2015-2044", "CVE-2015-2045", "CVE-2015-0361", "CVE-2014-9065",
                "CVE-2014-8866", "CVE-2014-8867", "CVE-2014-9030", "CVE-2014-8594",
                "CVE-2014-8595", "CVE-2014-0150");
  script_tag(name:"cvss_base", value:"7.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_tag(name:"qod_type", value:"package");
  script_name("Fedora Update for xen FEDORA-2015-11247");
  script_tag(name: "summary", value: "Check the version of xen");
  script_tag(name: "vuldetect", value: "Get the installed version with the help
of detect NVT and check if the version is vulnerable or not.");
  script_tag(name: "insight", value: "This package contains the XenD daemon and xm command line
tools, needed to manage virtual machines running under the
Xen hypervisor
");
  script_tag(name: "affected", value: "xen on Fedora 21");
  script_tag(name: "solution", value: "Please Install the Updated Packages.");
  script_xref(name: "FEDORA", value: "2015-11247");
  script_xref(name: "URL" , value: "https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html");
  script_tag(name:"solution_type", value:"VendorFix");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2015 Greenbone Networks GmbH");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms");
  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");

res = "";
if(release == NULL){
  exit(0);
}

if(release == "FC21")
{

  if ((res = isrpmvuln(pkg:"xen", rpm:"xen~4.4.2~7.fc21", rls:"FC21")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

JSON Vulners Source

Initial Source

{"id": "OPENVAS:1361412562310869777", "bulletinFamily": "scanner", "title": "Fedora Update for xen FEDORA-2015-11247", "description": "Check the version of xen", "published": "2015-07-19T00:00:00", "modified": "2017-07-10T00:00:00", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869777", "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "references": ["2015-11247", "https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html"], "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2014-9065", "CVE-2015-2044", "CVE-2015-3340", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-3259", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-3209", "CVE-2015-4106", "CVE-2015-2152"], "type": "openvas", "lastseen": "2018-09-01T23:49:28", "history": [{"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2014-9065", "CVE-2015-2044", "CVE-2015-3340", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-3259", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-3209", "CVE-2015-4106", "CVE-2015-2152"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Check the version of xen", "edition": 4, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "ba8c249bbe3fbc0c56d3ef636778e5a796c92d592b223fd75b954948d6e04f86", "hashmap": [{"hash": "106d7f71c9dfd45cc38a5a2174898b34", "key": "pluginID"}, {"hash": "829fe99c0ca2760b92cc25a9f8f6d7e6", "key": "sourceData"}, {"hash": "3b91c569bf6ec5f1163e046889c99268", "key": "cvelist"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "1e898993712db5cf9f9a110102684025", "key": "reporter"}, {"hash": "4aa6130974d9b5dfc23ee7d559acca0c", "key": "references"}, {"hash": "c7ef8525da264ea1651a844e802f152e", "key": "href"}, {"hash": "633319bf1d6ecdf9657996fbbe611a25", "key": "title"}, {"hash": "d10460e04c9b4476c31bfd0577b5a9e3", "key": "published"}, {"hash": "0d134bf170d66438eb1e01173ee0187f", "key": "modified"}, {"hash": "83ed4d9c27df53b503664fed06183dea", "key": "description"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869777", "id": "OPENVAS:1361412562310869777", "lastseen": "2018-08-30T19:21:50", "modified": "2017-07-10T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310869777", "published": "2015-07-19T00:00:00", "references": ["2015-11247", "https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html"], "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-11247\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869777\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-19 06:37:48 +0200 (Sun, 19 Jul 2015)\");\n script_cve_id(\"CVE-2015-3259\", \"CVE-2015-3209\", \"CVE-2015-4163\", \"CVE-2015-4164\",\n \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\",\n \"CVE-2015-3456\", \"CVE-2015-3340\", \"CVE-2015-2752\", \"CVE-2015-2756\",\n \"CVE-2015-2751\", \"CVE-2015-2152\", \"CVE-2015-2151\", \"CVE-2015-1563\",\n \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-0361\", \"CVE-2014-9065\",\n \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-8594\",\n \"CVE-2014-8595\", \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-11247\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-11247\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~7.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Fedora Update for xen FEDORA-2015-11247", "type": "openvas", "viewCount": 0}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:21:50"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2014-9065", "CVE-2015-2044", "CVE-2015-3340", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-3259", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-3209", "CVE-2015-4106", "CVE-2015-2152"], "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "description": "Check the version of xen", "edition": 1, "enchantments": {}, "hash": "1acf028d3e072aff781e3098aeffd3bb615af5141bfefa89e17532388da17744", "hashmap": [{"hash": "c40b903ef912c1c773edb1cd7cf44e35", "key": "modified"}, {"hash": "ed3111898fb94205e2b64cefef5a2081", "key": "cvss"}, {"hash": "106d7f71c9dfd45cc38a5a2174898b34", "key": "pluginID"}, {"hash": "3b91c569bf6ec5f1163e046889c99268", "key": "cvelist"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "aba844379a49220566d9b1d456526a57", "key": "sourceData"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "1e898993712db5cf9f9a110102684025", "key": "reporter"}, {"hash": "4aa6130974d9b5dfc23ee7d559acca0c", "key": "references"}, {"hash": "c7ef8525da264ea1651a844e802f152e", "key": "href"}, {"hash": "633319bf1d6ecdf9657996fbbe611a25", "key": "title"}, {"hash": "d10460e04c9b4476c31bfd0577b5a9e3", "key": "published"}, {"hash": "83ed4d9c27df53b503664fed06183dea", "key": "description"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869777", "id": "OPENVAS:1361412562310869777", "lastseen": "2017-07-02T21:11:38", "modified": "2016-05-18T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310869777", "published": "2015-07-19T00:00:00", "references": ["2015-11247", "https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html"], "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-11247\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869777\");\n script_version(\"$Revision: 3342 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-05-18 09:45:03 +0200 (Wed, 18 May 2016) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-19 06:37:48 +0200 (Sun, 19 Jul 2015)\");\n script_cve_id(\"CVE-2015-3259\", \"CVE-2015-3209\", \"CVE-2015-4163\", \"CVE-2015-4164\",\n \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\",\n \"CVE-2015-3456\", \"CVE-2015-3340\", \"CVE-2015-2752\", \"CVE-2015-2756\",\n \"CVE-2015-2751\", \"CVE-2015-2152\", \"CVE-2015-2151\", \"CVE-2015-1563\",\n \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-0361\", \"CVE-2014-9065\",\n \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-8594\",\n \"CVE-2014-8595\", \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-11247\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-11247\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_summary(\"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~7.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Fedora Update for xen FEDORA-2015-11247", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2017-07-02T21:11:38"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2014-9065", "CVE-2015-2044", "CVE-2015-3340", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-3259", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-3209", "CVE-2015-4106", "CVE-2015-2152"], "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "description": "Check the version of xen", "edition": 2, "enchantments": {}, "hash": "2403a61edfc72b4491b4e7d590198d44451aede97684c9c1dc804648265685f2", "hashmap": [{"hash": "ed3111898fb94205e2b64cefef5a2081", "key": "cvss"}, {"hash": "106d7f71c9dfd45cc38a5a2174898b34", "key": "pluginID"}, {"hash": "3b91c569bf6ec5f1163e046889c99268", "key": "cvelist"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "669578dff97c16a0f41051692e23b8aa", "key": "modified"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "1e898993712db5cf9f9a110102684025", "key": "reporter"}, {"hash": "4aa6130974d9b5dfc23ee7d559acca0c", "key": "references"}, {"hash": "c7ef8525da264ea1651a844e802f152e", "key": "href"}, {"hash": "633319bf1d6ecdf9657996fbbe611a25", "key": "title"}, {"hash": "d10460e04c9b4476c31bfd0577b5a9e3", "key": "published"}, {"hash": "ec636cbcdf1c461178e7a1e4e4f101ed", "key": "sourceData"}, {"hash": "83ed4d9c27df53b503664fed06183dea", "key": "description"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869777", "id": "OPENVAS:1361412562310869777", "lastseen": "2017-07-19T10:51:52", "modified": "2017-07-04T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310869777", "published": "2015-07-19T00:00:00", "references": ["2015-11247", "https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html"], "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-11247\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869777\");\n script_version(\"$Revision: 6513 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-04 11:59:28 +0200 (Tue, 04 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-19 06:37:48 +0200 (Sun, 19 Jul 2015)\");\n script_cve_id(\"CVE-2015-3259\", \"CVE-2015-3209\", \"CVE-2015-4163\", \"CVE-2015-4164\",\n \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\",\n \"CVE-2015-3456\", \"CVE-2015-3340\", \"CVE-2015-2752\", \"CVE-2015-2756\",\n \"CVE-2015-2751\", \"CVE-2015-2152\", \"CVE-2015-2151\", \"CVE-2015-1563\",\n \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-0361\", \"CVE-2014-9065\",\n \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-8594\",\n \"CVE-2014-8595\", \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-11247\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-11247\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~7.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Fedora Update for xen FEDORA-2015-11247", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-07-19T10:51:52"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2014-9065", "CVE-2015-2044", "CVE-2015-3340", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-3259", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-3209", "CVE-2015-4106", "CVE-2015-2152"], "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "description": "Check the version of xen", "edition": 3, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "bd75cc0d705ceb429a16d5a5965b1b0f869613a26a204e2948b62776933a8f4c", "hashmap": [{"hash": "ed3111898fb94205e2b64cefef5a2081", "key": "cvss"}, {"hash": "106d7f71c9dfd45cc38a5a2174898b34", "key": "pluginID"}, {"hash": "829fe99c0ca2760b92cc25a9f8f6d7e6", "key": "sourceData"}, {"hash": "3b91c569bf6ec5f1163e046889c99268", "key": "cvelist"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "1e898993712db5cf9f9a110102684025", "key": "reporter"}, {"hash": "4aa6130974d9b5dfc23ee7d559acca0c", "key": "references"}, {"hash": "c7ef8525da264ea1651a844e802f152e", "key": "href"}, {"hash": "633319bf1d6ecdf9657996fbbe611a25", "key": "title"}, {"hash": "d10460e04c9b4476c31bfd0577b5a9e3", "key": "published"}, {"hash": "0d134bf170d66438eb1e01173ee0187f", "key": "modified"}, {"hash": "83ed4d9c27df53b503664fed06183dea", "key": "description"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869777", "id": "OPENVAS:1361412562310869777", "lastseen": "2017-07-25T10:52:33", "modified": "2017-07-10T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310869777", "published": "2015-07-19T00:00:00", "references": ["2015-11247", "https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html"], "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-11247\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869777\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-19 06:37:48 +0200 (Sun, 19 Jul 2015)\");\n script_cve_id(\"CVE-2015-3259\", \"CVE-2015-3209\", \"CVE-2015-4163\", \"CVE-2015-4164\",\n \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\",\n \"CVE-2015-3456\", \"CVE-2015-3340\", \"CVE-2015-2752\", \"CVE-2015-2756\",\n \"CVE-2015-2751\", \"CVE-2015-2152\", \"CVE-2015-2151\", \"CVE-2015-1563\",\n \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-0361\", \"CVE-2014-9065\",\n \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-8594\",\n \"CVE-2014-8595\", \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-11247\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-11247\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~7.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Fedora Update for xen FEDORA-2015-11247", "type": "openvas", "viewCount": 0}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2017-07-25T10:52:33"}], "edition": 5, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "3b91c569bf6ec5f1163e046889c99268"}, {"key": "cvss", "hash": "ed3111898fb94205e2b64cefef5a2081"}, {"key": "description", "hash": "83ed4d9c27df53b503664fed06183dea"}, {"key": "href", "hash": "c7ef8525da264ea1651a844e802f152e"}, {"key": "modified", "hash": "0d134bf170d66438eb1e01173ee0187f"}, {"key": "naslFamily", "hash": "be931514784f88df80712740ad2723e7"}, {"key": "pluginID", "hash": "106d7f71c9dfd45cc38a5a2174898b34"}, {"key": "published", "hash": "d10460e04c9b4476c31bfd0577b5a9e3"}, {"key": "references", "hash": "4aa6130974d9b5dfc23ee7d559acca0c"}, {"key": "reporter", "hash": "1e898993712db5cf9f9a110102684025"}, {"key": "sourceData", "hash": "829fe99c0ca2760b92cc25a9f8f6d7e6"}, {"key": "title", "hash": "633319bf1d6ecdf9657996fbbe611a25"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "hash": "bd75cc0d705ceb429a16d5a5965b1b0f869613a26a204e2948b62776933a8f4c", "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}, "vulnersScore": 7.5}, "objectVersion": "1.3", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-11247\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869777\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-19 06:37:48 +0200 (Sun, 19 Jul 2015)\");\n script_cve_id(\"CVE-2015-3259\", \"CVE-2015-3209\", \"CVE-2015-4163\", \"CVE-2015-4164\",\n \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\",\n \"CVE-2015-3456\", \"CVE-2015-3340\", \"CVE-2015-2752\", \"CVE-2015-2756\",\n \"CVE-2015-2751\", \"CVE-2015-2152\", \"CVE-2015-2151\", \"CVE-2015-1563\",\n \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-0361\", \"CVE-2014-9065\",\n \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-8594\",\n \"CVE-2014-8595\", \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-11247\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-11247\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162192.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~7.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "pluginID": "1361412562310869777"}

{"openvas": [{"lastseen": "2018-09-01T23:51:09", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-August/163681.html", "2015-12714"], "pluginID": "1361412562310869858", "description": "Check the version of xen", "edition": 5, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-08-13T00:00:00", "title": "Fedora Update for xen FEDORA-2015-12714", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2014-9065", "CVE-2015-2044", "CVE-2015-3340", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-3259", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-5154", "CVE-2015-1563", "CVE-2015-3209", "CVE-2015-4106", "CVE-2015-2152"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869858", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869858", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-12714\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869858\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-08-13 06:37:06 +0200 (Thu, 13 Aug 2015)\");\n script_cve_id(\"CVE-2015-5154\", \"CVE-2015-3259\", \"CVE-2015-3209\", \"CVE-2015-4163\",\n \"CVE-2015-4164\", \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\",\n \"CVE-2015-4106\", \"CVE-2015-3456\", \"CVE-2015-3340\", \"CVE-2015-2752\",\n \"CVE-2015-2756\", \"CVE-2015-2751\", \"CVE-2015-2152\", \"CVE-2015-2151\",\n \"CVE-2015-1563\", \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-0361\",\n \"CVE-2014-9065\", \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\",\n \"CVE-2014-8594\", \"CVE-2014-8595\", \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-12714\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and\nxm command line tools, needed to manage virtual machines running under the Xen\nhypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-12714\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-August/163681.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~9.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:49:00", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-June/160677.html", "2015-9978"], "pluginID": "1361412562310869462", "description": "Check the version of xen", "edition": 5, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-06-25T00:00:00", "title": "Fedora Update for xen FEDORA-2015-9978", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2014-9065", "CVE-2015-2044", "CVE-2015-3340", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-3209", "CVE-2015-4106", "CVE-2015-2152"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869462", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869462", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-9978\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869462\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-06-25 06:29:54 +0200 (Thu, 25 Jun 2015)\");\n script_cve_id(\"CVE-2015-3209\", \"CVE-2015-4163\", \"CVE-2015-4164\", \"CVE-2015-4103\",\n \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\", \"CVE-2015-3456\",\n \"CVE-2015-3340\", \"CVE-2015-2752\", \"CVE-2015-2756\", \"CVE-2015-2751\",\n \"CVE-2015-2152\", \"CVE-2015-2151\", \"CVE-2015-1563\", \"CVE-2015-2044\",\n \"CVE-2015-2045\", \"CVE-2015-0361\", \"CVE-2014-9065\", \"CVE-2014-8866\",\n \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-8594\", \"CVE-2014-8595\",\n \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-9978\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and\nxm command line tools, needed to manage virtual machines running under the Xen\nhypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-9978\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-June/160677.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~6.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:49:13", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-March/152776.html", "2015-3944"], "pluginID": "1361412562310869121", "description": "Check the version of xen", "edition": 5, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-03-24T00:00:00", "title": "Fedora Update for xen FEDORA-2015-3944", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-9065", "CVE-2015-2044", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2151", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-2152"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869121", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869121", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-3944\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869121\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-03-24 06:59:55 +0100 (Tue, 24 Mar 2015)\");\n script_cve_id(\"CVE-2015-2152\", \"CVE-2015-2151\", \"CVE-2015-1563\", \"CVE-2015-2044\",\n \"CVE-2015-2045\", \"CVE-2015-0361\", \"CVE-2014-9065\", \"CVE-2014-8866\",\n \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-8594\", \"CVE-2014-8595\",\n \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-3944\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and\nxm command line tools, needed to manage virtual machines running under the Xen\nhypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-3944\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-March/152776.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.1~16.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:52:55", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-May/158434.html", "2015-8270"], "pluginID": "1361412562310869402", "description": "Check the version of xen", "edition": 4, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-06-09T00:00:00", "title": "Fedora Update for xen FEDORA-2015-8270", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-9065", "CVE-2015-2044", "CVE-2015-3340", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-2151", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-2152"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869402", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869402", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-8270\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869402\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-06-09 10:51:48 +0200 (Tue, 09 Jun 2015)\");\n script_cve_id(\"CVE-2015-3456\", \"CVE-2015-3340\", \"CVE-2015-2752\", \"CVE-2015-2756\",\n \"CVE-2015-2751\", \"CVE-2015-2152\", \"CVE-2015-2151\", \"CVE-2015-1563\",\n \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-0361\", \"CVE-2014-9065\",\n \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-8594\",\n \"CVE-2014-8595\", \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-8270\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and\nxm command line tools, needed to manage virtual machines running under the Xen\nhypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-8270\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-May/158434.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~4.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:49:47", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-June/160154.html", "2015-9466"], "pluginID": "1361412562310869445", "description": "Check the version of xen", "edition": 5, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-06-15T00:00:00", "title": "Fedora Update for xen FEDORA-2015-9466", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2014-9065", "CVE-2015-2044", "CVE-2015-3340", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-4106", "CVE-2015-2152"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869445", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869445", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-9466\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869445\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-06-15 06:11:02 +0200 (Mon, 15 Jun 2015)\");\n script_cve_id(\"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\",\n \"CVE-2015-3456\", \"CVE-2015-3340\", \"CVE-2015-2752\", \"CVE-2015-2756\",\n \"CVE-2015-2751\", \"CVE-2015-2152\", \"CVE-2015-2151\", \"CVE-2015-1563\",\n \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-0361\", \"CVE-2014-9065\",\n \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-8594\",\n \"CVE-2014-8595\", \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-9466\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and\nxm command line tools, needed to manage virtual machines running under the Xen\nhypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-9466\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-June/160154.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~5.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:52:12", "references": ["2015-6670", "https://lists.fedoraproject.org/pipermail/package-announce/2015-May/156979.html"], "pluginID": "1361412562310869336", "description": "Check the version of xen", "edition": 4, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-05-03T00:00:00", "title": "Fedora Update for xen FEDORA-2015-6670", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-9065", "CVE-2015-2044", "CVE-2015-3340", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-2151", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-2152"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869336", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869336", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-6670\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869336\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-05-03 05:41:26 +0200 (Sun, 03 May 2015)\");\n script_cve_id(\"CVE-2015-3340\", \"CVE-2015-2752\", \"CVE-2015-2756\", \"CVE-2015-2751\",\n \"CVE-2015-2152\", \"CVE-2015-2151\", \"CVE-2015-1563\", \"CVE-2015-2044\",\n \"CVE-2015-2045\", \"CVE-2015-0361\", \"CVE-2014-9065\", \"CVE-2014-8866\",\n \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-8594\", \"CVE-2014-8595\",\n \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-6670\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and\nxm command line tools, needed to manage virtual machines running under the Xen\nhypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-6670\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-May/156979.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~3.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:50:19", "references": ["2015-11308", "https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162176.html"], "pluginID": "1361412562310869775", "description": "Check the version of xen", "edition": 5, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-07-19T00:00:00", "title": "Fedora Update for xen FEDORA-2015-11308", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-3259", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869775", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869775", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-11308\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869775\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-19 06:37:23 +0200 (Sun, 19 Jul 2015)\");\n script_cve_id(\"CVE-2015-3259\", \"CVE-2015-3209\", \"CVE-2015-4163\", \"CVE-2015-4164\",\n \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\",\n \"CVE-2015-3456\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-11308\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 22\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-11308\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162176.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC22\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.5.1~2.fc22\", rls:\"FC22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:49:45", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154574.html", "2015-5208"], "pluginID": "1361412562310869232", "description": "Check the version of xen", "edition": 5, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-04-12T00:00:00", "title": "Fedora Update for xen FEDORA-2015-5208", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-9065", "CVE-2015-2044", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-2045", "CVE-2014-0150", "CVE-2015-2752", "CVE-2015-2151", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-9030", "CVE-2015-1563", "CVE-2015-2152"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869232", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869232", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-5208\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869232\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-04-12 05:55:54 +0200 (Sun, 12 Apr 2015)\");\n script_cve_id(\"CVE-2015-2752\", \"CVE-2015-2756\", \"CVE-2015-2751\", \"CVE-2015-2152\",\n \"CVE-2015-2151\", \"CVE-2015-1563\", \"CVE-2015-2044\", \"CVE-2015-2045\",\n \"CVE-2015-0361\", \"CVE-2014-9065\", \"CVE-2014-8866\", \"CVE-2014-8867\",\n \"CVE-2014-9030\", \"CVE-2014-8594\", \"CVE-2014-8595\", \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for xen FEDORA-2015-5208\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-5208\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154574.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2~2.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:51:05", "references": ["2015:1092_1"], "pluginID": "1361412562310850674", "description": "Check the version of xen", "edition": 6, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-09-18T00:00:00", "title": "SuSE Update for xen openSUSE-SU-2015:1092-1 (xen)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-2044", "CVE-2015-3340", "CVE-2015-2045", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-3615", "CVE-2015-3209", "CVE-2015-4106", "CVE-2015-2152"], "modified": "2017-12-08T00:00:00", "id": "OPENVAS:1361412562310850674", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310850674", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_suse_2015_1092_1.nasl 8046 2017-12-08 08:48:56Z santu $\n#\n# SuSE Update for xen openSUSE-SU-2015:1092-1 (xen)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.850674\");\n script_version(\"$Revision: 8046 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-08 09:48:56 +0100 (Fri, 08 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-09-18 10:29:15 +0200 (Fri, 18 Sep 2015)\");\n script_cve_id(\"CVE-2014-3615\", \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-2151\", \"CVE-2015-2152\", \"CVE-2015-2751\", \"CVE-2015-2752\", \"CVE-2015-2756\", \"CVE-2015-3209\", \"CVE-2015-3340\", \"CVE-2015-3456\", \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\", \"CVE-2015-4163\", \"CVE-2015-4164\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"SuSE Update for xen openSUSE-SU-2015:1092-1 (xen)\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"\n Xen was updated to 4.4.2 to fix multiple vulnerabilities and non-security\n bugs.\n\n The following vulnerabilities were fixed:\n\n * CVE-2015-4103: Potential unintended writes to host MSI message data\n field via qemu (XSA-128) (boo#931625)\n * CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests\n (XSA-129) (boo#931626)\n * CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error messages\n (XSA-130) (boo#931627)\n * CVE-2015-4106: Unmediated PCI register access in qemu (XSA-131)\n (boo#931628)\n * CVE-2015-4164: DoS through iret hypercall handler (XSA-136) (boo#932996)\n * CVE-2015-4163: GNTTABOP_swap_grant_ref operation misbehavior (XSA-134)\n (boo#932790)\n * CVE-2015-3209: heap overflow in qemu pcnet controller allowing guest to\n host escape (XSA-135) (boo#932770)\n * CVE-2015-3456: Fixed a buffer overflow in the floppy drive emulation,\n which could be used to denial of service attacks or potential code\n execution against the host. ()\n * CVE-2015-3340: Xen did not initialize certain fields, which allowed\n certain remote service domains to obtain sensitive information from\n memory via a (1) XEN_DOMCTL_gettscinfo or (2)\n XEN_SYSCTL_getdomaininfolist request. ()\n * CVE-2015-2752: Long latency MMIO mapping operations are not preemptible\n (XSA-125 boo#922705)\n * CVE-2015-2756: Unmediated PCI command register access in qemu (XSA-126\n boo#922706)\n * CVE-2015-2751: Certain domctl operations may be abused to lock up the\n host (XSA-127 boo#922709)\n * CVE-2015-2151: Hypervisor memory corruption due to x86 emulator flaw\n (boo#919464 XSA-123)\n * CVE-2015-2045: Information leak through version information hypercall\n (boo#918998 XSA-122)\n * CVE-2015-2044: Information leak via internal x86 system device emulation\n (boo#918995 (XSA-121)\n * CVE-2015-2152: HVM qemu unexpectedly enabling emulated VGA graphics\n backends (boo#919663 XSA-119)\n * CVE-2014-3615: information leakage when guest sets high resolution\n (boo#895528)\n\n The following non-security bugs were fixed:\n\n * xentop: Fix memory leak on read failure\n * boo#923758: xen dmesg contains bogus output in early boot\n * boo#921842: Xentop doesn't display disk statistics for VMs using qdisks\n * boo#919098: L3: XEN blktap device intermittently fails to connect\n * boo#882089: Windows 2012 R2 fails to boot up with greater than 60 vcpus\n * boo#903680: Problems with detecting free loop devices on Xen guest\n startup\n * boo#861318: xentop reports 'Found interface vif101.0 but domain 101 does\n not exist.'\n * boo#901488: Intel ixgbe driver assigns rx/tx queues per core resulting\n in irq problems on servers with a ... \n\n Description truncated, for more information please check the Reference URL\");\n script_tag(name: \"affected\", value: \"xen on openSUSE 13.2\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"openSUSE-SU\", value: \"2015:1092_1\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"openSUSE13.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen-debugsource\", rpm:\"xen-debugsource~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-devel\", rpm:\"xen-devel~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-libs\", rpm:\"xen-libs~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-libs-debuginfo\", rpm:\"xen-libs-debuginfo~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-tools-domU\", rpm:\"xen-tools-domU~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-tools-domU-debuginfo\", rpm:\"xen-tools-domU-debuginfo~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-doc-html\", rpm:\"xen-doc-html~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-kmp-default\", rpm:\"xen-kmp-default~4.4.2_06_k3.16.7_21~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-kmp-default-debuginfo\", rpm:\"xen-kmp-default-debuginfo~4.4.2_06_k3.16.7_21~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-kmp-desktop\", rpm:\"xen-kmp-desktop~4.4.2_06_k3.16.7_21~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-kmp-desktop-debuginfo\", rpm:\"xen-kmp-desktop-debuginfo~4.4.2_06_k3.16.7_21~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-libs-32bit\", rpm:\"xen-libs-32bit~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-libs-debuginfo-32bit\", rpm:\"xen-libs-debuginfo-32bit~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-tools\", rpm:\"xen-tools~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"xen-tools-debuginfo\", rpm:\"xen-tools-debuginfo~4.4.2_06~23.1\", rls:\"openSUSE13.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:50:06", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-January/148103.html", "2015-0331"], "pluginID": "1361412562310868930", "description": "Check the version of xen", "edition": 5, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-01-18T00:00:00", "title": "Fedora Update for xen FEDORA-2015-0331", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-9065", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2014-0150", "CVE-2014-9030"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310868930", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868930", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2015-0331\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868930\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-01-18 05:50:16 +0100 (Sun, 18 Jan 2015)\");\n script_cve_id(\"CVE-2015-0361\", \"CVE-2014-9065\", \"CVE-2014-8866\", \"CVE-2014-8867\",\n \"CVE-2014-9030\", \"CVE-2014-8594\", \"CVE-2014-8595\", \"CVE-2014-0150\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2015-0331\");\n script_tag(name: \"summary\", value: \"Check the version of xen\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"This package contains the XenD daemon and\nxm command line tools, needed to manage virtual machines running under the Xen\nhypervisor.\");\n script_tag(name: \"affected\", value: \"xen on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-0331\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-January/148103.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.4.1~12.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2018-09-01T23:37:06", "references": ["https://bugzilla.opensuse.org/show_bug.cgi?id=931628", "https://bugzilla.opensuse.org/show_bug.cgi?id=910254", "https://bugzilla.opensuse.org/show_bug.cgi?id=923758", "https://bugzilla.opensuse.org/show_bug.cgi?id=929339", "https://bugzilla.opensuse.org/show_bug.cgi?id=922706", "https://bugzilla.opensuse.org/show_bug.cgi?id=919663", "https://bugzilla.opensuse.org/show_bug.cgi?id=861318", "https://bugzilla.opensuse.org/show_bug.cgi?id=906689", "https://bugzilla.opensuse.org/show_bug.cgi?id=901488", "https://bugzilla.opensuse.org/show_bug.cgi?id=918998", "https://bugzilla.opensuse.org/show_bug.cgi?id=931627", "https://bugzilla.opensuse.org/show_bug.cgi?id=912011", "https://bugzilla.opensuse.org/show_bug.cgi?id=903680", "https://bugzilla.opensuse.org/show_bug.cgi?id=919464", "https://bugzilla.opensuse.org/show_bug.cgi?id=918995", "https://bugzilla.opensuse.org/show_bug.cgi?id=922705", "https://bugzilla.opensuse.org/show_bug.cgi?id=921842", "https://bugzilla.opensuse.org/show_bug.cgi?id=932996", "https://bugzilla.opensuse.org/show_bug.cgi?id=927967", "https://bugzilla.opensuse.org/show_bug.cgi?id=932770", "https://bugzilla.opensuse.org/show_bug.cgi?id=882089", "https://bugzilla.opensuse.org/show_bug.cgi?id=895528", "https://bugzilla.opensuse.org/show_bug.cgi?id=919098", "https://bugzilla.opensuse.org/show_bug.cgi?id=932790", "https://bugzilla.opensuse.org/show_bug.cgi?id=922709", "https://bugzilla.opensuse.org/show_bug.cgi?id=931625", "https://bugzilla.opensuse.org/show_bug.cgi?id=931626"], "pluginID": "84333", "description": "Xen was updated to 4.4.2 to fix multiple vulnerabilities and non-security bugs.\n\nThe following vulnerabilities were fixed :\n\n - CVE-2015-4103: Potential unintended writes to host MSI message data field via qemu (XSA-128) (boo#931625)\n\n - CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests (XSA-129) (boo#931626)\n\n - CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error messages (XSA-130) (boo#931627)\n\n - CVE-2015-4106: Unmediated PCI register access in qemu (XSA-131) (boo#931628)\n\n - CVE-2015-4164: DoS through iret hypercall handler (XSA-136) (boo#932996)\n\n - CVE-2015-4163: GNTTABOP_swap_grant_ref operation misbehavior (XSA-134) (boo#932790)\n\n - CVE-2015-3209: heap overflow in qemu pcnet controller allowing guest to host escape (XSA-135) (boo#932770)\n\n - CVE-2015-3456: Fixed a buffer overflow in the floppy drive emulation, which could be used to denial of service attacks or potential code execution against the host. ()\n\n - CVE-2015-3340: Xen did not initialize certain fields, which allowed certain remote service domains to obtain sensitive information from memory via a (1) XEN_DOMCTL_gettscinfo or (2) XEN_SYSCTL_getdomaininfolist request. ()\n\n - CVE-2015-2752: Long latency MMIO mapping operations are not preemptible (XSA-125 boo#922705)\n\n - CVE-2015-2756: Unmediated PCI command register access in qemu (XSA-126 boo#922706)\n\n - CVE-2015-2751: Certain domctl operations may be abused to lock up the host (XSA-127 boo#922709)\n\n - CVE-2015-2151: Hypervisor memory corruption due to x86 emulator flaw (boo#919464 XSA-123)\n\n - CVE-2015-2045: Information leak through version information hypercall (boo#918998 XSA-122)\n\n - CVE-2015-2044: Information leak via internal x86 system device emulation (boo#918995 (XSA-121)\n\n - CVE-2015-2152: HVM qemu unexpectedly enabling emulated VGA graphics backends (boo#919663 XSA-119)\n\n - CVE-2014-3615: information leakage when guest sets high resolution (boo#895528)\n\nThe following non-security bugs were fixed :\n\n - xentop: Fix memory leak on read failure \n\n - boo#923758: xen dmesg contains bogus output in early boot\n\n - boo#921842: Xentop doesn't display disk statistics for VMs using qdisks\n\n - boo#919098: L3: XEN blktap device intermittently fails to connect \n\n - boo#882089: Windows 2012 R2 fails to boot up with greater than 60 vcpus\n\n - boo#903680: Problems with detecting free loop devices on Xen guest startup\n\n - boo#861318: xentop reports 'Found interface vif101.0 but domain 101 does not exist.'\n\n - boo#901488: Intel ixgbe driver assigns rx/tx queues per core resulting in irq problems on servers with a large amount of CPU cores\n\n - boo#910254: SLES11 SP3 Xen VT-d igb NIC doesn't work\n\n - boo#912011: high ping latency after upgrade to latest SLES11SP3 on xen Dom0\n\n - boo#906689: let systemd schedule xencommons after network-online.target and remote-fs.target so that xendomains has access to remote shares\n\nThe following functionality was enabled or enhanced :\n\n - Enable spice support in qemu for x86_64\n\n - Add Qxl vga support\n\n - Enhancement to virsh/libvirtd 'send-key' command (FATE#317240)\n\n - Add domain_migrate_constraints_set API to Xend's http interface (FATE#317239)", "edition": 4, "reporter": "Tenable", "published": "2015-06-23T00:00:00", "title": "openSUSE Security Update : xen (openSUSE-2015-434) (Venom)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-2044", "CVE-2015-3340", "CVE-2015-2045", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-3615", "CVE-2015-3209", "CVE-2015-4106", "CVE-2015-2152"], "modified": "2015-10-22T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:xen-doc-html", "p-cpe:/a:novell:opensuse:xen-devel", "p-cpe:/a:novell:opensuse:xen-kmp-desktop", "p-cpe:/a:novell:opensuse:xen", "p-cpe:/a:novell:opensuse:xen-tools-debuginfo", "p-cpe:/a:novell:opensuse:xen-kmp-default-debuginfo", "p-cpe:/a:novell:opensuse:xen-libs", "p-cpe:/a:novell:opensuse:xen-tools-domU-debuginfo", "p-cpe:/a:novell:opensuse:xen-libs-debuginfo", "p-cpe:/a:novell:opensuse:xen-libs-32bit", "p-cpe:/a:novell:opensuse:xen-debugsource", "cpe:/o:novell:opensuse:13.2", "p-cpe:/a:novell:opensuse:xen-tools", "p-cpe:/a:novell:opensuse:xen-kmp-desktop-debuginfo", "p-cpe:/a:novell:opensuse:xen-tools-domU", "p-cpe:/a:novell:opensuse:xen-kmp-default", "p-cpe:/a:novell:opensuse:xen-libs-debuginfo-32bit"], "id": "OPENSUSE-2015-434.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=84333", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2015-434.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(84333);\n script_version(\"$Revision: 2.2 $\");\n script_cvs_date(\"$Date: 2015/10/22 14:14:59 $\");\n\n script_cve_id(\"CVE-2014-3615\", \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-2151\", \"CVE-2015-2152\", \"CVE-2015-2751\", \"CVE-2015-2752\", \"CVE-2015-2756\", \"CVE-2015-3209\", \"CVE-2015-3340\", \"CVE-2015-3456\", \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\", \"CVE-2015-4163\", \"CVE-2015-4164\");\n\n script_name(english:\"openSUSE Security Update : xen (openSUSE-2015-434) (Venom)\");\n script_summary(english:\"Check for the openSUSE-2015-434 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Xen was updated to 4.4.2 to fix multiple vulnerabilities and\nnon-security bugs.\n\nThe following vulnerabilities were fixed :\n\n - CVE-2015-4103: Potential unintended writes to host MSI\n message data field via qemu (XSA-128) (boo#931625)\n\n - CVE-2015-4104: PCI MSI mask bits inadvertently exposed\n to guests (XSA-129) (boo#931626)\n\n - CVE-2015-4105: Guest triggerable qemu MSI-X pass-through\n error messages (XSA-130) (boo#931627)\n\n - CVE-2015-4106: Unmediated PCI register access in qemu\n (XSA-131) (boo#931628)\n\n - CVE-2015-4164: DoS through iret hypercall handler\n (XSA-136) (boo#932996)\n\n - CVE-2015-4163: GNTTABOP_swap_grant_ref operation\n misbehavior (XSA-134) (boo#932790)\n\n - CVE-2015-3209: heap overflow in qemu pcnet controller\n allowing guest to host escape (XSA-135) (boo#932770)\n\n - CVE-2015-3456: Fixed a buffer overflow in the floppy\n drive emulation, which could be used to denial of\n service attacks or potential code execution against the\n host. ()\n\n - CVE-2015-3340: Xen did not initialize certain fields,\n which allowed certain remote service domains to obtain\n sensitive information from memory via a (1)\n XEN_DOMCTL_gettscinfo or (2)\n XEN_SYSCTL_getdomaininfolist request. ()\n\n - CVE-2015-2752: Long latency MMIO mapping operations are\n not preemptible (XSA-125 boo#922705)\n\n - CVE-2015-2756: Unmediated PCI command register access in\n qemu (XSA-126 boo#922706)\n\n - CVE-2015-2751: Certain domctl operations may be abused\n to lock up the host (XSA-127 boo#922709)\n\n - CVE-2015-2151: Hypervisor memory corruption due to x86\n emulator flaw (boo#919464 XSA-123)\n\n - CVE-2015-2045: Information leak through version\n information hypercall (boo#918998 XSA-122)\n\n - CVE-2015-2044: Information leak via internal x86 system\n device emulation (boo#918995 (XSA-121)\n\n - CVE-2015-2152: HVM qemu unexpectedly enabling emulated\n VGA graphics backends (boo#919663 XSA-119)\n\n - CVE-2014-3615: information leakage when guest sets high\n resolution (boo#895528)\n\nThe following non-security bugs were fixed :\n\n - xentop: Fix memory leak on read failure \n\n - boo#923758: xen dmesg contains bogus output in early\n boot\n\n - boo#921842: Xentop doesn't display disk statistics for\n VMs using qdisks\n\n - boo#919098: L3: XEN blktap device intermittently fails\n to connect \n\n - boo#882089: Windows 2012 R2 fails to boot up with\n greater than 60 vcpus\n\n - boo#903680: Problems with detecting free loop devices on\n Xen guest startup\n\n - boo#861318: xentop reports 'Found interface vif101.0 but\n domain 101 does not exist.'\n\n - boo#901488: Intel ixgbe driver assigns rx/tx queues per\n core resulting in irq problems on servers with a large\n amount of CPU cores\n\n - boo#910254: SLES11 SP3 Xen VT-d igb NIC doesn't work\n\n - boo#912011: high ping latency after upgrade to latest\n SLES11SP3 on xen Dom0\n\n - boo#906689: let systemd schedule xencommons after\n network-online.target and remote-fs.target so that\n xendomains has access to remote shares\n\nThe following functionality was enabled or enhanced :\n\n - Enable spice support in qemu for x86_64\n\n - Add Qxl vga support\n\n - Enhancement to virsh/libvirtd 'send-key' command\n (FATE#317240)\n\n - Add domain_migrate_constraints_set API to Xend's http\n interface (FATE#317239)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=861318\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=882089\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=895528\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=901488\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=903680\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=906689\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=910254\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=912011\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=918995\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=918998\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=919098\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=919464\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=919663\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=921842\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=922705\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=922706\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=922709\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=923758\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=927967\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=929339\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=931625\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=931626\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=931627\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=931628\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=932770\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=932790\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=932996\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xen packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-doc-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-desktop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-desktop-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools-domU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools-domU-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:13.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/06/14\");\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/06/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE13\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"13.2\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE13.2\", reference:\"xen-debugsource-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"xen-devel-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"xen-libs-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"xen-libs-debuginfo-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"xen-tools-domU-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"xen-tools-domU-debuginfo-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"xen-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"xen-doc-html-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"xen-kmp-default-4.4.2_06_k3.16.7_21-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"xen-kmp-default-debuginfo-4.4.2_06_k3.16.7_21-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"xen-kmp-desktop-4.4.2_06_k3.16.7_21-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"xen-kmp-desktop-debuginfo-4.4.2_06_k3.16.7_21-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"xen-libs-32bit-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"xen-libs-debuginfo-32bit-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"xen-tools-4.4.2_06-23.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"xen-tools-debuginfo-4.4.2_06-23.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xen-debugsource / xen-devel / xen-libs-32bit / xen-libs / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:06:38", "references": ["http://support.novell.com/security/cve/CVE-2014-8867.html", "https://bugzilla.novell.com/show_bug.cgi?id=905467", "https://bugzilla.novell.com/show_bug.cgi?id=905465", "https://bugzilla.novell.com/show_bug.cgi?id=906439", "https://bugzilla.novell.com/show_bug.cgi?id=903970", "http://support.novell.com/security/cve/CVE-2014-8866.html", "http://support.novell.com/security/cve/CVE-2014-8595.html", "https://bugzilla.novell.com/show_bug.cgi?id=903967", "http://support.novell.com/security/cve/CVE-2014-8594.html", "https://bugzilla.novell.com/show_bug.cgi?id=901317", "http://support.novell.com/security/cve/CVE-2014-9030.html", "https://bugzilla.novell.com/show_bug.cgi?id=896023", "https://bugzilla.novell.com/show_bug.cgi?id=882089", "https://bugzilla.novell.com/show_bug.cgi?id=866902", "https://bugzilla.novell.com/show_bug.cgi?id=903850"], "pluginID": "80254", "description": "Xen has been updated to version 4.2.5 with additional patches to fix six security issues :\n\n - Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling. (CVE-2014-9030)\n\n - Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor. (CVE-2014-8867)\n\n - Excessive checking in compatibility mode hypercall argument translation. (CVE-2014-8866)\n\n - Guest user mode triggerable VM exits not handled by hypervisor. (bnc#903850)\n\n - Missing privilege level checks in x86 emulation of far branches. (CVE-2014-8595)\n\n - Insufficient restrictions on certain MMU update hypercalls (CVE-2014-8594). These non-security issues have been fixed :\n\n - Xen save/restore of HVM guests cuts off disk and networking. (bnc#866902)\n\n - Windows 2012 R2 fails to boot up with greater than 60 vcpus. (bnc#882089)\n\n - Increase limit domUloader to 32MB. (bnc#901317)\n\n - Adjust xentop column layout. (bnc#896023)", "edition": 4, "reporter": "Tenable", "published": "2014-12-26T00:00:00", "title": "SuSE 11.3 Security Update : Xen (SAT Patch Number 10018)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2014-8594", "CVE-2014-9030"], "modified": "2014-12-26T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:11:xen-tools", "p-cpe:/a:novell:suse_linux:11:xen-tools-domU", "p-cpe:/a:novell:suse_linux:11:xen-libs-32bit", "cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:11:xen", "p-cpe:/a:novell:suse_linux:11:xen-doc-pdf", "p-cpe:/a:novell:suse_linux:11:xen-doc-html", "p-cpe:/a:novell:suse_linux:11:xen-libs", "p-cpe:/a:novell:suse_linux:11:xen-kmp-default"], "id": "SUSE_11_XEN-11SP3-2014-11-26-141127.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=80254", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(80254);\n script_version(\"$Revision: 1.1 $\");\n script_cvs_date(\"$Date: 2014/12/26 14:03:25 $\");\n\n script_cve_id(\"CVE-2014-8594\", \"CVE-2014-8595\", \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\");\n\n script_name(english:\"SuSE 11.3 Security Update : Xen (SAT Patch Number 10018)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Xen has been updated to version 4.2.5 with additional patches to fix\nsix security issues :\n\n - Guest effectable page reference leak in\n MMU_MACHPHYS_UPDATE handling. (CVE-2014-9030)\n\n - Insufficient bounding of 'REP MOVS' to MMIO emulated\n inside the hypervisor. (CVE-2014-8867)\n\n - Excessive checking in compatibility mode hypercall\n argument translation. (CVE-2014-8866)\n\n - Guest user mode triggerable VM exits not handled by\n hypervisor. (bnc#903850)\n\n - Missing privilege level checks in x86 emulation of far\n branches. (CVE-2014-8595)\n\n - Insufficient restrictions on certain MMU update\n hypercalls (CVE-2014-8594). These non-security issues\n have been fixed :\n\n - Xen save/restore of HVM guests cuts off disk and\n networking. (bnc#866902)\n\n - Windows 2012 R2 fails to boot up with greater than 60\n vcpus. (bnc#882089)\n\n - Increase limit domUloader to 32MB. (bnc#901317)\n\n - Adjust xentop column layout. (bnc#896023)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=866902\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=882089\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=896023\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=901317\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=903850\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=903967\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=903970\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=905465\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=905467\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=906439\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-8594.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-8595.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-8866.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-8867.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-9030.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply SAT patch number 10018.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-doc-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-doc-pdf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-libs-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-tools-domU\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/11/27\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/26\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\npl = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(pl) || int(pl) != 3) audit(AUDIT_OS_NOT, \"SuSE 11.3\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-doc-html-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-doc-pdf-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-kmp-default-4.2.5_02_3.0.101_0.40-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-libs-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-libs-32bit-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-tools-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-tools-domU-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-doc-html-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-doc-pdf-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-kmp-default-4.2.5_02_3.0.101_0.40-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-libs-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-libs-32bit-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-tools-4.2.5_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-tools-domU-4.2.5_02-0.7.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:46:00", "references": ["https://bugzilla.opensuse.org/show_bug.cgi?id=931628", "https://bugzilla.opensuse.org/show_bug.cgi?id=931627", "https://bugzilla.opensuse.org/show_bug.cgi?id=932996", "https://bugzilla.opensuse.org/show_bug.cgi?id=932770", "https://bugzilla.opensuse.org/show_bug.cgi?id=932790", "https://bugzilla.opensuse.org/show_bug.cgi?id=922709", "https://bugzilla.opensuse.org/show_bug.cgi?id=931625", "https://bugzilla.opensuse.org/show_bug.cgi?id=931626"], "pluginID": "84334", "description": "Xen was updated to fix eight vulnerabilities.\n\nThe following vulnerabilities were fixed :\n\n - CVE-2015-2751: Certain domctl operations may be abused to lock up the host (XSA-127 boo#922709)\n\n - CVE-2015-4103: Potential unintended writes to host MSI message data field via qemu (XSA-128) (boo#931625)\n\n - CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests (XSA-129) (boo#931626)\n\n - CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error messages (XSA-130) (boo#931627)\n\n - CVE-2015-4106: Unmediated PCI register access in qemu (XSA-131) (boo#931628)\n\n - CVE-2015-4163: GNTTABOP_swap_grant_ref operation misbehavior (XSA-134) (boo#932790)\n\n - CVE-2015-3209: heap overflow in qemu pcnet controller allowing guest to host escape (XSA-135) (boo#932770)\n\n - CVE-2015-4164: DoS through iret hypercall handler (XSA-136) (boo#932996)", "edition": 4, "reporter": "Tenable", "published": "2015-06-23T00:00:00", "title": "openSUSE Security Update : xen (openSUSE-2015-435)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-23T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:xen-doc-html", "p-cpe:/a:novell:opensuse:xen-devel", "p-cpe:/a:novell:opensuse:xen-kmp-desktop", "p-cpe:/a:novell:opensuse:xen-kmp-pae", "p-cpe:/a:novell:opensuse:xen", "p-cpe:/a:novell:opensuse:xen-tools-debuginfo", "p-cpe:/a:novell:opensuse:xen-kmp-default-debuginfo", "p-cpe:/a:novell:opensuse:xen-kmp-pae-debuginfo", "p-cpe:/a:novell:opensuse:xen-libs", "p-cpe:/a:novell:opensuse:xen-tools-domU-debuginfo", "p-cpe:/a:novell:opensuse:xen-libs-debuginfo", "p-cpe:/a:novell:opensuse:xen-libs-32bit", "p-cpe:/a:novell:opensuse:xen-debugsource", "p-cpe:/a:novell:opensuse:xen-tools", "p-cpe:/a:novell:opensuse:xen-kmp-desktop-debuginfo", "p-cpe:/a:novell:opensuse:xen-tools-domU", "p-cpe:/a:novell:opensuse:xen-kmp-default", "p-cpe:/a:novell:opensuse:xen-libs-debuginfo-32bit", "p-cpe:/a:novell:opensuse:xen-xend-tools", "p-cpe:/a:novell:opensuse:xen-xend-tools-debuginfo", "cpe:/o:novell:opensuse:13.1"], "id": "OPENSUSE-2015-435.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=84334", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2015-435.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(84334);\n script_version(\"$Revision: 2.1 $\");\n script_cvs_date(\"$Date: 2015/06/23 13:56:29 $\");\n\n script_cve_id(\"CVE-2015-2751\", \"CVE-2015-3209\", \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\", \"CVE-2015-4163\", \"CVE-2015-4164\");\n\n script_name(english:\"openSUSE Security Update : xen (openSUSE-2015-435)\");\n script_summary(english:\"Check for the openSUSE-2015-435 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Xen was updated to fix eight vulnerabilities.\n\nThe following vulnerabilities were fixed :\n\n - CVE-2015-2751: Certain domctl operations may be abused\n to lock up the host (XSA-127 boo#922709)\n\n - CVE-2015-4103: Potential unintended writes to host MSI\n message data field via qemu (XSA-128) (boo#931625)\n\n - CVE-2015-4104: PCI MSI mask bits inadvertently exposed\n to guests (XSA-129) (boo#931626)\n\n - CVE-2015-4105: Guest triggerable qemu MSI-X pass-through\n error messages (XSA-130) (boo#931627)\n\n - CVE-2015-4106: Unmediated PCI register access in qemu\n (XSA-131) (boo#931628)\n\n - CVE-2015-4163: GNTTABOP_swap_grant_ref operation\n misbehavior (XSA-134) (boo#932790)\n\n - CVE-2015-3209: heap overflow in qemu pcnet controller\n allowing guest to host escape (XSA-135) (boo#932770)\n\n - CVE-2015-4164: DoS through iret hypercall handler\n (XSA-136) (boo#932996)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=922709\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=931625\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=931626\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=931627\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=931628\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=932770\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=932790\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=932996\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xen packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-doc-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-desktop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-desktop-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-pae-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools-domU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools-domU-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-xend-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-xend-tools-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:13.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/06/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/06/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE13\\.1)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"13.1\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-debugsource-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-devel-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-kmp-default-4.3.4_05_k3.11.10_29-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-kmp-default-debuginfo-4.3.4_05_k3.11.10_29-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-kmp-desktop-4.3.4_05_k3.11.10_29-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-kmp-desktop-debuginfo-4.3.4_05_k3.11.10_29-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-kmp-pae-4.3.4_05_k3.11.10_29-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-kmp-pae-debuginfo-4.3.4_05_k3.11.10_29-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-libs-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-libs-debuginfo-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-tools-domU-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"xen-tools-domU-debuginfo-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"xen-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"xen-doc-html-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"xen-libs-32bit-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"xen-libs-debuginfo-32bit-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"xen-tools-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"xen-tools-debuginfo-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"xen-xend-tools-4.3.4_05-47.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"xen-xend-tools-debuginfo-4.3.4_05-47.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xen-debugsource / xen-devel / xen-kmp-default / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:47:24", "references": ["https://security.gentoo.org/glsa/201504-04"], "pluginID": "82734", "description": "The remote host is affected by the vulnerability described in GLSA-201504-04 (Xen: Multiple vulnerabilities)\n\n Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details.\n Impact :\n\n A local attacker could possibly cause a Denial of Service condition or obtain sensitive information.\n Workaround :\n\n There is no known workaround at this time.", "edition": 4, "reporter": "Tenable", "published": "2015-04-13T00:00:00", "title": "GLSA-201504-04 : Xen: Multiple vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-5146", "CVE-2014-9065", "CVE-2013-3495", "CVE-2015-2044", "CVE-2014-8866", "CVE-2014-3967", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-2045", "CVE-2015-2752", "CVE-2014-3968", "CVE-2015-2751", "CVE-2014-9066", "CVE-2015-2756", "CVE-2014-5149", "CVE-2014-9030", "CVE-2015-2152", "CVE-2013-2212"], "modified": "2015-04-17T00:00:00", "cpe": ["cpe:/o:gentoo:linux", "p-cpe:/a:gentoo:linux:xen"], "id": "GENTOO_GLSA-201504-04.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82734", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 201504-04.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82734);\n script_version(\"$Revision: 1.2 $\");\n script_cvs_date(\"$Date: 2015/04/17 13:32:19 $\");\n\n script_cve_id(\"CVE-2013-2212\", \"CVE-2013-3495\", \"CVE-2014-3967\", \"CVE-2014-3968\", \"CVE-2014-5146\", \"CVE-2014-5149\", \"CVE-2014-8594\", \"CVE-2014-8595\", \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\", \"CVE-2014-9065\", \"CVE-2014-9066\", \"CVE-2015-0361\", \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-2152\", \"CVE-2015-2751\", \"CVE-2015-2752\", \"CVE-2015-2756\");\n script_bugtraq_id(61424, 61854, 67794, 67824, 69198, 69199, 71149, 71151, 71207, 71331, 71332, 71544, 71546, 71882, 72577, 72954, 72955, 73068, 73443, 73448);\n script_xref(name:\"GLSA\", value:\"201504-04\");\n\n script_name(english:\"GLSA-201504-04 : Xen: Multiple vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-201504-04\n(Xen: Multiple vulnerabilities)\n\n Multiple vulnerabilities have been discovered in Xen. Please review the\n CVE identifiers referenced below for details.\n \nImpact :\n\n A local attacker could possibly cause a Denial of Service condition or\n obtain sensitive information.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/201504-04\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All Xen 4.4 users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=app-emulation/xen-4.4.2-r1'\n All Xen 4.2 users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=app-emulation/xen-4.2.5-r8'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/04/11\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"app-emulation/xen\", unaffected:make_list(\"ge 4.4.2-r1\", \"rge 4.2.5-r8\"), vulnerable:make_list(\"lt 4.4.2-r1\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"Xen\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:09:52", "references": ["https://security-tracker.debian.org/tracker/CVE-2014-8866", "https://security-tracker.debian.org/tracker/CVE-2014-8867", "https://security-tracker.debian.org/tracker/CVE-2014-8595", "https://security-tracker.debian.org/tracker/CVE-2014-9030", "https://security-tracker.debian.org/tracker/CVE-2014-8594", "https://packages.debian.org/source/wheezy/xen", "http://www.debian.org/security/2015/dsa-3140"], "pluginID": "81027", "description": "Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation.\n\n - CVE-2014-8594 Roger Pau Monne and Jan Beulich discovered that incomplete restrictions on MMU update hypercalls may result in privilege escalation.\n\n - CVE-2014-8595 Jan Beulich discovered that missing privilege level checks in the x86 emulation of far branches may result in privilege escalation.\n\n - CVE-2014-8866 Jan Beulich discovered that an error in compatibility mode hypercall argument translation may result in denial of service.\n\n - CVE-2014-8867 Jan Beulich discovered that an insufficient restriction in acceleration support for the 'REP MOVS' instruction may result in denial of service.\n\n - CVE-2014-9030 Andrew Cooper discovered a page reference leak in MMU_MACHPHYS_UPDATE handling, resulting in denial of service.", "edition": 5, "reporter": "Tenable", "published": "2015-01-28T00:00:00", "title": "Debian DSA-3140-1 : xen - security update", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2014-8594", "CVE-2014-9030"], "modified": "2018-07-09T00:00:00", "cpe": ["p-cpe:/a:debian:debian_linux:xen", "cpe:/o:debian:debian_linux:7.0"], "id": "DEBIAN_DSA-3140.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=81027", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-3140. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(81027);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/09 14:30:26\");\n\n script_cve_id(\"CVE-2014-8594\", \"CVE-2014-8595\", \"CVE-2014-8866\", \"CVE-2014-8867\", \"CVE-2014-9030\");\n script_bugtraq_id(71149, 71151, 71207, 71331, 71332);\n script_xref(name:\"DSA\", value:\"3140\");\n\n script_name(english:\"Debian DSA-3140-1 : xen - security update\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple security issues have been discovered in the Xen\nvirtualisation solution which may result in denial of service,\ninformation disclosure or privilege escalation.\n\n - CVE-2014-8594\n Roger Pau Monne and Jan Beulich discovered that\n incomplete restrictions on MMU update hypercalls may\n result in privilege escalation.\n\n - CVE-2014-8595\n Jan Beulich discovered that missing privilege level\n checks in the x86 emulation of far branches may result\n in privilege escalation.\n\n - CVE-2014-8866\n Jan Beulich discovered that an error in compatibility\n mode hypercall argument translation may result in denial\n of service.\n\n - CVE-2014-8867\n Jan Beulich discovered that an insufficient restriction\n in acceleration support for the 'REP MOVS' instruction\n may result in denial of service.\n\n - CVE-2014-9030\n Andrew Cooper discovered a page reference leak in\n MMU_MACHPHYS_UPDATE handling, resulting in denial of\n service.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2014-8594\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2014-8595\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2014-8866\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2014-8867\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2014-9030\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/xen\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2015/dsa-3140\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xen packages.\n\nFor the stable distribution (wheezy), these problems have been fixed\nin version 4.1.4-3+deb7u4.\n\nFor the upcoming stable distribution (jessie), these problems have\nbeen fixed in version 4.4.1-4.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/01/27\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/01/28\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"libxen-4.1\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libxen-dev\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libxen-ocaml\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libxen-ocaml-dev\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libxenstore3.0\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-docs-4.1\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-hypervisor-4.1-amd64\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-hypervisor-4.1-i386\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-system-amd64\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-system-i386\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-utils-4.1\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-utils-common\", reference:\"4.1.4-3+deb7u4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xenstore-utils\", reference:\"4.1.4-3+deb7u4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:35:39", "references": ["http://www.nessus.org/u?8b4a9eaa"], "pluginID": "88737", "description": "The remote OracleVM system is missing necessary patches to address critical security updates :\n\n - XSA-125: Limit XEN_DOMCTL_memory_mapping hypercall to only process up to 64 GFNs (or less) (Jan Beulich) [20732412] (CVE-2015-2752)\n\n - XSA-126: xen: limit guest control of PCI command register (Jan Beulich) [20739399] (CVE-2015-2756)\n\n - XSA-128: xen: properly gate host writes of modified PCI CFG contents (Jan Beulich) [21157440] (CVE-2015-4103)\n\n - XSA-129: xen: don't allow guest to control MSI mask register (Jan Beulich) [21158692] (CVE-2015-4104)\n\n - XSA-130: xen/MSI-X: disable logging by default (Jan Beulich) [21159408] (CVE-2015-4105)\n\n - XSA-131: [PATCH 1/8] xen/MSI: don't open-code pass-through of enable bit modifications (Jan Beulich) [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 2/8] xen/pt: consolidate PM capability emu_mask [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 3/8] xen/pt: correctly handle PM status bit [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 4/8] xen/pt: split out calculation of throughable mask in PCI config space handling [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 5/8] xen/pt: mark all PCIe capability bits read-only [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 6/8] xen/pt: mark reserved bits in PCI config space fields [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 7/8] xen/pt: add a few PCI config space field descriptions [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 8/8] xen/pt: unknown PCI config space fields should be read-only [21164529] (CVE-2015-4106)", "edition": 7, "reporter": "Tenable", "published": "2016-02-15T00:00:00", "title": "OracleVM 2.2 : xen (OVMSA-2016-0012)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "OracleVM Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-2752", "CVE-2015-4104", "CVE-2015-2756", "CVE-2015-4106"], "modified": "2018-07-24T00:00:00", "cpe": ["p-cpe:/a:oracle:vm:xen-64", "p-cpe:/a:oracle:vm:xen-devel", "p-cpe:/a:oracle:vm:xen-debugger", "cpe:/o:oracle:vm_server:2.2", "p-cpe:/a:oracle:vm:xen-pvhvm-devel", "p-cpe:/a:oracle:vm:xen", "p-cpe:/a:oracle:vm:xen-tools"], "id": "ORACLEVM_OVMSA-2016-0012.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=88737", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from OracleVM\n# Security Advisory OVMSA-2016-0012.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(88737);\n script_version(\"2.3\");\n script_cvs_date(\"Date: 2018/07/24 18:56:11\");\n\n script_cve_id(\"CVE-2015-2752\", \"CVE-2015-2756\", \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\");\n script_bugtraq_id(72577, 73448, 74947, 74948, 74949, 74950);\n\n script_name(english:\"OracleVM 2.2 : xen (OVMSA-2016-0012)\");\n script_summary(english:\"Checks the RPM output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote OracleVM host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote OracleVM system is missing necessary patches to address\ncritical security updates :\n\n - XSA-125: Limit XEN_DOMCTL_memory_mapping hypercall to\n only process up to 64 GFNs (or less) (Jan Beulich)\n [20732412] (CVE-2015-2752)\n\n - XSA-126: xen: limit guest control of PCI command\n register (Jan Beulich) [20739399] (CVE-2015-2756)\n\n - XSA-128: xen: properly gate host writes of modified PCI\n CFG contents (Jan Beulich) [21157440] (CVE-2015-4103)\n\n - XSA-129: xen: don't allow guest to control MSI mask\n register (Jan Beulich) [21158692] (CVE-2015-4104)\n\n - XSA-130: xen/MSI-X: disable logging by default (Jan\n Beulich) [21159408] (CVE-2015-4105)\n\n - XSA-131: [PATCH 1/8] xen/MSI: don't open-code\n pass-through of enable bit modifications (Jan Beulich)\n [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 2/8] xen/pt: consolidate PM capability\n emu_mask [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 3/8] xen/pt: correctly handle PM status\n bit [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 4/8] xen/pt: split out calculation of\n throughable mask in PCI config space handling [21164529]\n (CVE-2015-4106)\n\n - XSA-131: [PATCH 5/8] xen/pt: mark all PCIe capability\n bits read-only [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 6/8] xen/pt: mark reserved bits in PCI\n config space fields [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 7/8] xen/pt: add a few PCI config space\n field descriptions [21164529] (CVE-2015-4106)\n\n - XSA-131: [PATCH 8/8] xen/pt: unknown PCI config space\n fields should be read-only [21164529] (CVE-2015-4106)\"\n );\n # https://oss.oracle.com/pipermail/oraclevm-errata/2016-February/000417.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?8b4a9eaa\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:xen-64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:xen-debugger\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:xen-pvhvm-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:xen-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:vm_server:2.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/02/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/02/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2016-2018 Tenable Network Security, Inc.\");\n script_family(english:\"OracleVM Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleVM/release\", \"Host/OracleVM/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/OracleVM/release\");\nif (isnull(release) || \"OVS\" >!< release) audit(AUDIT_OS_NOT, \"OracleVM\");\nif (! ereg(pattern:\"^OVS\" + \"2\\.2\" + \"(\\.[0-9]|$)\", string:release)) audit(AUDIT_OS_NOT, \"OracleVM 2.2\", \"OracleVM \" + release);\nif (!get_kb_item(\"Host/OracleVM/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"OracleVM\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"OVS2.2\", reference:\"xen-3.4.0-0.2.25.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"xen-64-3.4.0-0.2.25.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"xen-debugger-3.4.0-0.2.25.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"xen-devel-3.4.0-0.2.25.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"xen-pvhvm-devel-3.4.0-0.2.25.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"xen-tools-3.4.0-0.2.25.el5\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xen / xen-64 / xen-debugger / xen-devel / xen-pvhvm-devel / etc\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:33:40", "references": ["https://www.suse.com/security/cve/CVE-2015-4104.html", "https://bugzilla.suse.com/931626", "https://www.suse.com/security/cve/CVE-2015-3209.html", "https://bugzilla.suse.com/931625", "https://bugzilla.suse.com/932770", "https://www.suse.com/security/cve/CVE-2015-4106.html", "http://www.nessus.org/u?baa6b0ae", "https://www.suse.com/security/cve/CVE-2015-4164.html", "https://www.suse.com/security/cve/CVE-2015-4105.html", "https://bugzilla.suse.com/931627", "https://www.suse.com/security/cve/CVE-2015-4103.html", "https://bugzilla.suse.com/931628", "http://www.nessus.org/u?cbd169d9", "https://bugzilla.suse.com/932996"], "pluginID": "84468", "description": "Xen was updated to fix six security issues :\n\nCVE-2015-4103: Potential unintended writes to host MSI message data field via qemu. (XSA-128, bsc#931625)\n\nCVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests.\n(XSA-129, bsc#931626)\n\nCVE-2015-4105: Guest triggerable qemu MSI-X pass-through error messages. (XSA-130, bsc#931627)\n\nCVE-2015-4106: Unmediated PCI register access in qemu. (XSA-131, bsc#931628)\n\nCVE-2015-3209: heap overflow in qemu pcnet controller allowing guest to host escape. (XSA-135, bsc#932770)\n\nCVE-2015-4164: DoS through iret hypercall handler. (XSA-136, bsc#932996)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2015-06-30T00:00:00", "title": "SUSE SLES11 Security Update : Xen (SUSE-SU-2015:1156-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4164", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2018-07-31T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:xen-doc-html", "p-cpe:/a:novell:suse_linux:xen-kmp-trace", "cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:xen-doc-pdf", "p-cpe:/a:novell:suse_linux:xen-kmp-pae", "p-cpe:/a:novell:suse_linux:xen-kmp-default", "p-cpe:/a:novell:suse_linux:xen-tools-domU", "p-cpe:/a:novell:suse_linux:xen-libs", "p-cpe:/a:novell:suse_linux:xen", "p-cpe:/a:novell:suse_linux:xen-tools"], "id": "SUSE_SU-2015-1156-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=84468", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2015:1156-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(84468);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/31 17:27:54\");\n\n script_cve_id(\"CVE-2015-3209\", \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\", \"CVE-2015-4164\");\n script_bugtraq_id(74947, 74948, 74949, 74950, 75123, 75149);\n\n script_name(english:\"SUSE SLES11 Security Update : Xen (SUSE-SU-2015:1156-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Xen was updated to fix six security issues :\n\nCVE-2015-4103: Potential unintended writes to host MSI message data\nfield via qemu. (XSA-128, bsc#931625)\n\nCVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests.\n(XSA-129, bsc#931626)\n\nCVE-2015-4105: Guest triggerable qemu MSI-X pass-through error\nmessages. (XSA-130, bsc#931627)\n\nCVE-2015-4106: Unmediated PCI register access in qemu. (XSA-131,\nbsc#931628)\n\nCVE-2015-3209: heap overflow in qemu pcnet controller allowing guest\nto host escape. (XSA-135, bsc#932770)\n\nCVE-2015-4164: DoS through iret hypercall handler. (XSA-136,\nbsc#932996)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/931625\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/931626\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/931627\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/931628\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/932770\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/932996\"\n );\n # https://download.suse.com/patch/finder/?keywords=5db78436698154117f5060fbcf442cac\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?cbd169d9\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2015-3209.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2015-4103.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2015-4104.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2015-4105.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2015-4106.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2015-4164.html\"\n );\n # https://www.suse.com/support/update/announcement/2015/suse-su-20151156-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?baa6b0ae\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use YaST online_update.\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Server 11 SP1 LTSS :\n\nzypper in -t patch slessp1-xen-201506=10726\n\nTo bring your system up-to-date, use 'zypper patch'.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-doc-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-doc-pdf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-kmp-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-kmp-trace\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-tools-domU\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/06/29\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/06/30\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLES11)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLES11\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\nif (cpu >!< \"i386|i486|i586|i686|x86_64\") audit(AUDIT_ARCH_NOT, \"i386 / i486 / i586 / i686 / x86_64\", cpu);\n\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES11\" && (! ereg(pattern:\"^(1)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES11 SP1\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"x86_64\", reference:\"xen-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"x86_64\", reference:\"xen-doc-html-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"x86_64\", reference:\"xen-doc-pdf-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"x86_64\", reference:\"xen-kmp-default-4.0.3_21548_18_2.6.32.59_0.19-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"x86_64\", reference:\"xen-kmp-trace-4.0.3_21548_18_2.6.32.59_0.19-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"x86_64\", reference:\"xen-libs-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"x86_64\", reference:\"xen-tools-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"x86_64\", reference:\"xen-tools-domU-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"x86_64\", reference:\"xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"i586\", reference:\"xen-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"i586\", reference:\"xen-doc-html-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"i586\", reference:\"xen-doc-pdf-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"i586\", reference:\"xen-kmp-default-4.0.3_21548_18_2.6.32.59_0.19-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"i586\", reference:\"xen-kmp-trace-4.0.3_21548_18_2.6.32.59_0.19-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"i586\", reference:\"xen-libs-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"i586\", reference:\"xen-tools-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"i586\", reference:\"xen-tools-domU-4.0.3_21548_18-0.25.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"1\", cpu:\"i586\", reference:\"xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.25.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"Xen\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:55:44", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1187153", "https://bugzilla.redhat.com/show_bug.cgi?id=1196274", "https://bugzilla.redhat.com/show_bug.cgi?id=1200724", "http://www.nessus.org/u?8193b5a9"], "pluginID": "82054", "description": "Additional patch for XSA-98 on arm64 HVM qemu unexpectedly enabling emulated VGA graphics backends [XSA-119, CVE-2015-2152] Hypervisor memory corruption due to x86 emulator flaw [XSA-123, CVE-2015-2151] enable building pngs from fig files which is working again, fix oxenstored.service preset preuninstall script, arm: vgic: incorrect rate limiting of guest triggered logging, Information leak via internal x86 system device emulation, Information leak through version information hypercall\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2015-03-25T00:00:00", "title": "Fedora 21 : xen-4.4.1-16.fc21 (2015-3944)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2044", "CVE-2015-2045", "CVE-2015-2151", "CVE-2015-1563", "CVE-2015-2152"], "modified": "2015-10-19T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:21", "p-cpe:/a:fedoraproject:fedora:xen"], "id": "FEDORA_2015-3944.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82054", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-3944.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82054);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/10/19 23:06:18 $\");\n\n script_cve_id(\"CVE-2015-1563\", \"CVE-2015-2044\", \"CVE-2015-2045\", \"CVE-2015-2151\", \"CVE-2015-2152\");\n script_bugtraq_id(72766, 73015, 73068);\n script_xref(name:\"FEDORA\", value:\"2015-3944\");\n\n script_name(english:\"Fedora 21 : xen-4.4.1-16.fc21 (2015-3944)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Additional patch for XSA-98 on arm64 HVM qemu unexpectedly enabling\nemulated VGA graphics backends [XSA-119, CVE-2015-2152] Hypervisor\nmemory corruption due to x86 emulator flaw [XSA-123, CVE-2015-2151]\nenable building pngs from fig files which is working again, fix\noxenstored.service preset preuninstall script, arm: vgic: incorrect\nrate limiting of guest triggered logging, Information leak via\ninternal x86 system device emulation, Information leak through version\ninformation hypercall\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1187153\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1196274\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1200724\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-March/152776.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?8193b5a9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xen package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:21\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/03/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^21([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 21.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC21\", reference:\"xen-4.4.1-16.fc21\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xen\");\n}\n", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:38:52", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1223846", "https://bugzilla.redhat.com/show_bug.cgi?id=1223851", "http://www.nessus.org/u?d4225fea", "https://bugzilla.redhat.com/show_bug.cgi?id=1223853", "https://bugzilla.redhat.com/show_bug.cgi?id=1223859", "https://bugzilla.redhat.com/show_bug.cgi?id=1225882"], "pluginID": "84378", "description": "Heap overflow in QEMU PCNET controller, allowing guest->host escape [XSA-135, CVE-2015-3209] (#1230537) GNTTABOP_swap_grant_ref operation misbehavior [XSA-134, CVE-2015-4163] vulnerability in the iret hypercall handler [XSA-136, CVE-2015-4164] Potential unintended writes to host MSI message data field via qemu [XSA-128, CVE-2015-4103], PCI MSI mask bits inadvertently exposed to guests [XSA-129, CVE-2015-4104], Guest triggerable qemu MSI-X pass-through error messages [XSA-130, CVE-2015-4105], Unmediated PCI register access in qemu [XSA-131, CVE-2015-4106]\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2015-06-25T00:00:00", "title": "Fedora 20 : xen-4.3.4-6.fc20 (2015-9965)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2017-01-03T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:xen", "cpe:/o:fedoraproject:fedora:20"], "id": "FEDORA_2015-9965.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=84378", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-9965.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(84378);\n script_version(\"$Revision: 2.3 $\");\n script_cvs_date(\"$Date: 2017/01/03 14:55:08 $\");\n\n script_cve_id(\"CVE-2015-3209\", \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\");\n script_xref(name:\"FEDORA\", value:\"2015-9965\");\n\n script_name(english:\"Fedora 20 : xen-4.3.4-6.fc20 (2015-9965)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Heap overflow in QEMU PCNET controller, allowing guest->host escape\n[XSA-135, CVE-2015-3209] (#1230537) GNTTABOP_swap_grant_ref operation\nmisbehavior [XSA-134, CVE-2015-4163] vulnerability in the iret\nhypercall handler [XSA-136, CVE-2015-4164] Potential unintended writes\nto host MSI message data field via qemu [XSA-128, CVE-2015-4103], PCI\nMSI mask bits inadvertently exposed to guests [XSA-129,\nCVE-2015-4104], Guest triggerable qemu MSI-X pass-through error\nmessages [XSA-130, CVE-2015-4105], Unmediated PCI register access in\nqemu [XSA-131, CVE-2015-4106]\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1223846\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1223851\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1223853\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1223859\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1225882\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-June/160685.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?d4225fea\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xen package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/06/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/06/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"xen-4.3.4-6.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xen\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:49:53", "references": ["http://www.debian.org/security/2015/dsa-3286", "https://security-tracker.debian.org/tracker/CVE-2015-3209", "https://security-tracker.debian.org/tracker/CVE-2015-3209", "https://security-tracker.debian.org/tracker/CVE-2015-4163", "https://security-tracker.debian.org/tracker/CVE-2015-4103", "https://security-tracker.debian.org/tracker/CVE-2015-4103", "https://security-tracker.debian.org/tracker/CVE-2015-4106", "https://security-tracker.debian.org/tracker/CVE-2015-4106", "https://security-tracker.debian.org/tracker/CVE-2015-4164", "https://security-tracker.debian.org/tracker/CVE-2015-4105", "https://security-tracker.debian.org/tracker/CVE-2015-4105", "https://packages.debian.org/source/jessie/xen", "https://packages.debian.org/source/wheezy/xen", "https://security-tracker.debian.org/tracker/CVE-2015-4104", "https://security-tracker.debian.org/tracker/CVE-2015-4104"], "pluginID": "84169", "description": "Multiple security issues have been found in the Xen virtualisation solution :\n\n - CVE-2015-3209 Matt Tait discovered a flaw in the way QEMU's AMD PCnet Ethernet emulation handles multi-TMD packets with a length above 4096 bytes. A privileged guest user in a guest with an AMD PCNet ethernet card enabled can potentially use this flaw to execute arbitrary code on the host with the privileges of the hosting QEMU process.\n\n - CVE-2015-4103 Jan Beulich discovered that the QEMU Xen code does not properly restrict write access to the host MSI message data field, allowing a malicious guest to cause a denial of service.\n\n - CVE-2015-4104 Jan Beulich discovered that the QEMU Xen code does not properly restrict access to PCI MSI mask bits, allowing a malicious guest to cause a denial of service.\n\n - CVE-2015-4105 Jan Beulich reported that the QEMU Xen code enables logging for PCI MSI-X pass-through error messages, allowing a malicious guest to cause a denial of service.\n\n - CVE-2015-4106 Jan Beulich discovered that the QEMU Xen code does not properly restrict write access to the PCI config space for certain PCI pass-through devices, allowing a malicious guest to cause a denial of service, obtain sensitive information or potentially execute arbitrary code.\n\n - CVE-2015-4163 Jan Beulich discovered that a missing version check in the GNTTABOP_swap_grant_ref hypercall handler may result in denial of service. This only applies to Debian stable/jessie.\n\n - CVE-2015-4164 Andrew Cooper discovered a vulnerability in the iret hypercall handler, which may result in denial of service.", "edition": 5, "reporter": "Tenable", "published": "2015-06-15T00:00:00", "title": "Debian DSA-3286-1 : xen - security update", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2018-07-10T00:00:00", "cpe": ["cpe:/o:debian:debian_linux:8.0", "p-cpe:/a:debian:debian_linux:xen", "cpe:/o:debian:debian_linux:7.0"], "id": "DEBIAN_DSA-3286.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=84169", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-3286. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(84169);\n script_version(\"2.6\");\n script_cvs_date(\"Date: 2018/07/10 14:27:31\");\n\n script_cve_id(\"CVE-2015-3209\", \"CVE-2015-4103\", \"CVE-2015-4104\", \"CVE-2015-4105\", \"CVE-2015-4106\", \"CVE-2015-4163\", \"CVE-2015-4164\");\n script_bugtraq_id(74947, 74948, 74949, 74950, 75123, 75141, 75149);\n script_xref(name:\"DSA\", value:\"3286\");\n\n script_name(english:\"Debian DSA-3286-1 : xen - security update\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple security issues have been found in the Xen virtualisation\nsolution :\n\n - CVE-2015-3209\n Matt Tait discovered a flaw in the way QEMU's AMD PCnet\n Ethernet emulation handles multi-TMD packets with a\n length above 4096 bytes. A privileged guest user in a\n guest with an AMD PCNet ethernet card enabled can\n potentially use this flaw to execute arbitrary code on\n the host with the privileges of the hosting QEMU\n process.\n\n - CVE-2015-4103\n Jan Beulich discovered that the QEMU Xen code does not\n properly restrict write access to the host MSI message\n data field, allowing a malicious guest to cause a denial\n of service.\n\n - CVE-2015-4104\n Jan Beulich discovered that the QEMU Xen code does not\n properly restrict access to PCI MSI mask bits, allowing\n a malicious guest to cause a denial of service.\n\n - CVE-2015-4105\n Jan Beulich reported that the QEMU Xen code enables\n logging for PCI MSI-X pass-through error messages,\n allowing a malicious guest to cause a denial of service.\n\n - CVE-2015-4106\n Jan Beulich discovered that the QEMU Xen code does not\n properly restrict write access to the PCI config space\n for certain PCI pass-through devices, allowing a\n malicious guest to cause a denial of service, obtain\n sensitive information or potentially execute arbitrary\n code.\n\n - CVE-2015-4163\n Jan Beulich discovered that a missing version check in\n the GNTTABOP_swap_grant_ref hypercall handler may result\n in denial of service. This only applies to Debian\n stable/jessie.\n\n - CVE-2015-4164\n Andrew Cooper discovered a vulnerability in the iret\n hypercall handler, which may result in denial of\n service.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-3209\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-4103\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-4104\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-4105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-4106\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-4163\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-4164\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-3209\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-4103\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-4104\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-4105\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2015-4106\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/xen\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/jessie/xen\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2015/dsa-3286\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xen packages.\n\nFor the oldstable distribution (wheezy), these problems have been\nfixed in version 4.1.4-3+deb7u8. \n\nFor the stable distribution (jessie), these problems have been fixed\nin version 4.4.1-9+deb8u1. CVE-2015-3209, CVE-2015-4103,\nCVE-2015-4104, CVE-2015-4105 and CVE-2015-4106 don't affect the Xen\npackage in stable jessie, it uses the standard qemu package and has\nalready been fixed in DSA-3284-1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:8.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/06/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/06/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"libxen-4.1\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libxen-dev\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libxen-ocaml\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libxen-ocaml-dev\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libxenstore3.0\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-docs-4.1\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-hypervisor-4.1-amd64\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-hypervisor-4.1-i386\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-system-amd64\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-system-i386\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-utils-4.1\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xen-utils-common\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"xenstore-utils\", reference:\"4.1.4-3+deb7u8\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libxen-4.4\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libxen-dev\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libxenstore3.0\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"xen-hypervisor-4.4-amd64\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"xen-hypervisor-4.4-arm64\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"xen-hypervisor-4.4-armhf\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"xen-system-amd64\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"xen-system-arm64\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"xen-system-armhf\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"xen-utils-4.4\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"xen-utils-common\", reference:\"4.4.1-9+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"xenstore-utils\", reference:\"4.4.1-9+deb8u1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "suse": [{"lastseen": "2016-09-04T11:57:45", "references": ["https://bugzilla.suse.com/927967", "https://bugzilla.suse.com/861318", "https://bugzilla.suse.com/903680", "https://bugzilla.suse.com/931626", "https://bugzilla.suse.com/931625", "https://bugzilla.suse.com/932770", "https://bugzilla.suse.com/923758", "https://bugzilla.suse.com/906689", "https://bugzilla.suse.com/919098", "https://bugzilla.suse.com/922706", "https://bugzilla.suse.com/918998", "https://bugzilla.suse.com/932790", "https://bugzilla.suse.com/921842", "https://bugzilla.suse.com/931627", "https://bugzilla.suse.com/912011", "https://bugzilla.suse.com/929339", "https://bugzilla.suse.com/918995", "https://bugzilla.suse.com/922709", "https://bugzilla.suse.com/931628", "https://bugzilla.suse.com/919464", "https://bugzilla.suse.com/895528", "https://bugzilla.suse.com/922705", "https://bugzilla.suse.com/882089", "https://bugzilla.suse.com/901488", "https://bugzilla.suse.com/919663", "https://bugzilla.suse.com/932996", "https://bugzilla.suse.com/910254"], "affectedPackage": [{"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen", "packageFilename": "xen-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06_k3.16.7_21-23.1", "packageName": "xen-kmp-desktop", "packageFilename": "xen-kmp-desktop-4.4.2_06_k3.16.7_21-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-tools-domU-debuginfo", "packageFilename": "xen-tools-domU-debuginfo-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06_k3.16.7_21-23.1", "packageName": "xen-kmp-default-debuginfo", "packageFilename": "xen-kmp-default-debuginfo-4.4.2_06_k3.16.7_21-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06_k3.16.7_21-23.1", "packageName": "xen-kmp-desktop-debuginfo", "packageFilename": "xen-kmp-desktop-debuginfo-4.4.2_06_k3.16.7_21-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.4.2_06-23.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-tools", "packageFilename": "xen-tools-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-doc-html", "packageFilename": "xen-doc-html-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-tools-domU-debuginfo", "packageFilename": "xen-tools-domU-debuginfo-4.4.2_06-23.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.4.2_06-23.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.4.2_06-23.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-libs-32bit", "packageFilename": "xen-libs-32bit-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06_k3.16.7_21-23.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.4.2_06_k3.16.7_21-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-tools-debuginfo", "packageFilename": "xen-tools-debuginfo-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.4.2_06-23.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.4.2_06-23.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-libs-debuginfo-32bit", "packageFilename": "xen-libs-debuginfo-32bit-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.2_06-23.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.4.2_06-23.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}], "description": "Xen was updated to 4.4.2 to fix multiple vulnerabilities and non-security\n bugs.\n\n The following vulnerabilities were fixed:\n\n * CVE-2015-4103: Potential unintended writes to host MSI message data\n field via qemu (XSA-128) (boo#931625)\n * CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests\n (XSA-129) (boo#931626)\n * CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error messages\n (XSA-130) (boo#931627)\n * CVE-2015-4106: Unmediated PCI register access in qemu (XSA-131)\n (boo#931628)\n * CVE-2015-4164: DoS through iret hypercall handler (XSA-136) (boo#932996)\n * CVE-2015-4163: GNTTABOP_swap_grant_ref operation misbehavior (XSA-134)\n (boo#932790)\n * CVE-2015-3209: heap overflow in qemu pcnet controller allowing guest to\n host escape (XSA-135) (boo#932770)\n * CVE-2015-3456: Fixed a buffer overflow in the floppy drive emulation,\n which could be used to denial of service attacks or potential code\n execution against the host. ()\n * CVE-2015-3340: Xen did not initialize certain fields, which allowed\n certain remote service domains to obtain sensitive information from\n memory via a (1) XEN_DOMCTL_gettscinfo or (2)\n XEN_SYSCTL_getdomaininfolist request. ()\n * CVE-2015-2752: Long latency MMIO mapping operations are not preemptible\n (XSA-125 boo#922705)\n * CVE-2015-2756: Unmediated PCI command register access in qemu (XSA-126\n boo#922706)\n * CVE-2015-2751: Certain domctl operations may be abused to lock up the\n host (XSA-127 boo#922709)\n * CVE-2015-2151: Hypervisor memory corruption due to x86 emulator flaw\n (boo#919464 XSA-123)\n * CVE-2015-2045: Information leak through version information hypercall\n (boo#918998 XSA-122)\n * CVE-2015-2044: Information leak via internal x86 system device emulation\n (boo#918995 (XSA-121)\n * CVE-2015-2152: HVM qemu unexpectedly enabling emulated VGA graphics\n backends (boo#919663 XSA-119)\n * CVE-2014-3615: information leakage when guest sets high resolution\n (boo#895528)\n\n The following non-security bugs were fixed:\n\n * xentop: Fix memory leak on read failure\n * boo#923758: xen dmesg contains bogus output in early boot\n * boo#921842: Xentop doesn't display disk statistics for VMs using qdisks\n * boo#919098: L3: XEN blktap device intermittently fails to connect\n * boo#882089: Windows 2012 R2 fails to boot up with greater than 60 vcpus\n * boo#903680: Problems with detecting free loop devices on Xen guest\n startup\n * boo#861318: xentop reports "Found interface vif101.0 but domain 101 does\n not exist."\n * boo#901488: Intel ixgbe driver assigns rx/tx queues per core resulting\n in irq problems on servers with a large amount of CPU cores\n * boo#910254: SLES11 SP3 Xen VT-d igb NIC doesn't work\n * boo#912011: high ping latency after upgrade to latest SLES11SP3 on xen\n Dom0\n * boo#906689: let systemd schedule xencommons after network-online.target\n and remote-fs.target so that xendomains has access to remote shares\n\n The following functionality was enabled or enhanced:\n\n * Enable spice support in qemu for x86_64\n * Add Qxl vga support\n * Enhancement to virsh/libvirtd "send-key" command (FATE#317240)\n * Add domain_migrate_constraints_set API to Xend's http interface\n (FATE#317239)\n\n", "edition": 1, "reporter": "Suse", "published": "2015-06-22T12:04:52", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "title": "Security update for xen (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-2044", "CVE-2015-3340", "CVE-2015-2045", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-2151", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-2756", "CVE-2014-3615", "CVE-2015-3209", "CVE-2015-4106", "CVE-2015-2152"], "modified": "2015-06-22T12:04:52", "id": "OPENSUSE-SU-2015:1092-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00016.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:29:41", "references": ["https://bugzilla.suse.com/931626", "https://bugzilla.suse.com/931625", "https://bugzilla.suse.com/932770", "https://bugzilla.suse.com/932790", "https://bugzilla.suse.com/931627", "https://bugzilla.suse.com/922709", "https://bugzilla.suse.com/931628", "https://bugzilla.suse.com/932996"], "affectedPackage": [{"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05_k3.11.10_29-47.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.3.4_05_k3.11.10_29-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05_k3.11.10_29-47.1", "packageName": "xen-kmp-desktop-debuginfo", "packageFilename": "xen-kmp-desktop-debuginfo-4.3.4_05_k3.11.10_29-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05_k3.11.10_29-47.1", "packageName": "xen-kmp-desktop-debuginfo", "packageFilename": "xen-kmp-desktop-debuginfo-4.3.4_05_k3.11.10_29-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-doc-html", "packageFilename": "xen-doc-html-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-tools-debuginfo", "packageFilename": "xen-tools-debuginfo-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-tools-domU-debuginfo", "packageFilename": "xen-tools-domU-debuginfo-4.3.4_05-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.3.4_05-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05_k3.11.10_29-47.1", "packageName": "xen-kmp-pae-debuginfo", "packageFilename": "xen-kmp-pae-debuginfo-4.3.4_05_k3.11.10_29-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05_k3.11.10_29-47.1", "packageName": "xen-kmp-default-debuginfo", "packageFilename": "xen-kmp-default-debuginfo-4.3.4_05_k3.11.10_29-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05_k3.11.10_29-47.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.3.4_05_k3.11.10_29-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen", "packageFilename": "xen-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05_k3.11.10_29-47.1", "packageName": "xen-kmp-pae", "packageFilename": "xen-kmp-pae-4.3.4_05_k3.11.10_29-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-tools-domU-debuginfo", "packageFilename": "xen-tools-domU-debuginfo-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.3.4_05-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.3.4_05-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-libs-32bit", "packageFilename": "xen-libs-32bit-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05_k3.11.10_29-47.1", "packageName": "xen-kmp-default-debuginfo", "packageFilename": "xen-kmp-default-debuginfo-4.3.4_05_k3.11.10_29-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.3.4_05-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-xend-tools-debuginfo", "packageFilename": "xen-xend-tools-debuginfo-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-xend-tools", "packageFilename": "xen-xend-tools-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-tools", "packageFilename": "xen-tools-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-libs-debuginfo-32bit", "packageFilename": "xen-libs-debuginfo-32bit-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05_k3.11.10_29-47.1", "packageName": "xen-kmp-desktop", "packageFilename": "xen-kmp-desktop-4.3.4_05_k3.11.10_29-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.3.4_05-47.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05-47.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.3.4_05-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_05_k3.11.10_29-47.1", "packageName": "xen-kmp-desktop", "packageFilename": "xen-kmp-desktop-4.3.4_05_k3.11.10_29-47.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}], "description": "Xen was updated to fix eight vulnerabilities.\n\n The following vulnerabilities were fixed:\n\n * CVE-2015-2751: Certain domctl operations may be abused to lock up the\n host (XSA-127 boo#922709)\n * CVE-2015-4103: Potential unintended writes to host MSI message data\n field via qemu (XSA-128) (boo#931625)\n * CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests\n (XSA-129) (boo#931626)\n * CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error messages\n (XSA-130) (boo#931627)\n * CVE-2015-4106: Unmediated PCI register access in qemu (XSA-131)\n (boo#931628)\n * CVE-2015-4163: GNTTABOP_swap_grant_ref operation misbehavior (XSA-134)\n (boo#932790)\n * CVE-2015-3209: heap overflow in qemu pcnet controller allowing guest to\n host escape (XSA-135) (boo#932770)\n * CVE-2015-4164: DoS through iret hypercall handler (XSA-136) (boo#932996)\n\n", "edition": 1, "reporter": "Suse", "published": "2015-06-22T14:04:51", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "title": "Security update for xen (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-4104", "CVE-2015-2751", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-22T14:04:51", "id": "OPENSUSE-SU-2015:1094-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00017.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:56:36", "references": ["https://download.suse.com/patch/finder/?keywords=5db78436698154117f5060fbcf442cac", "https://bugzilla.suse.com/931626", "https://bugzilla.suse.com/931625", "https://bugzilla.suse.com/932770", "https://bugzilla.suse.com/931627", "https://bugzilla.suse.com/931628", "https://bugzilla.suse.com/932996"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18_2.6.32.59_0.19-0.25.1", "packageName": "xen-kmp-pae", "packageFilename": "xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.25.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.0.3_21548_18-0.25.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen", "packageFilename": "xen-4.0.3_21548_18-0.25.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18_2.6.32.59_0.19-0.25.1", "packageName": "xen-kmp-trace", "packageFilename": "xen-kmp-trace-4.0.3_21548_18_2.6.32.59_0.19-0.25.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.0.3_21548_18-0.25.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18_2.6.32.59_0.19-0.25.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.0.3_21548_18_2.6.32.59_0.19-0.25.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.0.3_21548_18-0.25.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen-doc-pdf", "packageFilename": "xen-doc-pdf-4.0.3_21548_18-0.25.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen-tools", "packageFilename": "xen-tools-4.0.3_21548_18-0.25.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18_2.6.32.59_0.19-0.25.1", "packageName": "xen-kmp-trace", "packageFilename": "xen-kmp-trace-4.0.3_21548_18_2.6.32.59_0.19-0.25.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18_2.6.32.59_0.19-0.25.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.0.3_21548_18_2.6.32.59_0.19-0.25.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen", "packageFilename": "xen-4.0.3_21548_18-0.25.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen-doc-html", "packageFilename": "xen-doc-html-4.0.3_21548_18-0.25.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.0.3_21548_18-0.25.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen-tools", "packageFilename": "xen-tools-4.0.3_21548_18-0.25.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen-doc-html", "packageFilename": "xen-doc-html-4.0.3_21548_18-0.25.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.1", "packageVersion": "4.0.3_21548_18-0.25.1", "packageName": "xen-doc-pdf", "packageFilename": "xen-doc-pdf-4.0.3_21548_18-0.25.1.i586.rpm", "arch": "i586", "operator": "lt"}], "description": "Xen was updated to fix six security issues:\n\n * CVE-2015-4103: Potential unintended writes to host MSI message data\n field via qemu. (XSA-128, bsc#931625)\n * CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests.\n (XSA-129, bsc#931626)\n * CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error\n messages. (XSA-130, bsc#931627)\n * CVE-2015-4106: Unmediated PCI register access in qemu. (XSA-131,\n bsc#931628)\n * CVE-2015-3209: heap overflow in qemu pcnet controller allowing guest\n to host escape. (XSA-135, bsc#932770)\n * CVE-2015-4164: DoS through iret hypercall handler. (XSA-136,\n bsc#932996)\n\n Security Issues:\n\n * CVE-2015-4103\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4103\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4103</a>>\n * CVE-2015-4104\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4104\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4104</a>>\n * CVE-2015-4105\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4105\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4105</a>>\n * CVE-2015-4106\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4106\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4106</a>>\n * CVE-2015-4164\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4164\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4164</a>>\n * CVE-2015-3209\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3209\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3209</a>>\n\n", "edition": 1, "reporter": "Suse", "published": "2015-06-29T14:05:20", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "title": "Security update for Xen (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4164", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-29T14:05:20", "id": "SUSE-SU-2015:1156-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00029.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:29:41", "references": ["https://bugzilla.suse.com/931626", "https://bugzilla.suse.com/931625", "https://bugzilla.suse.com/932770", "https://bugzilla.suse.com/906689", "https://bugzilla.suse.com/932790", "https://bugzilla.suse.com/931627", "https://bugzilla.suse.com/931628", "https://bugzilla.suse.com/932996"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-libs-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-libs", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_06_k3.12.39_47-21.1", "arch": "x86_64", "packageFilename": "xen-kmp-default-debuginfo-4.4.2_06_k3.12.39_47-21.1.x86_64.rpm", "packageName": "xen-kmp-default-debuginfo", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_06_k3.12.39_47-21.1", "arch": "x86_64", "packageFilename": "xen-kmp-default-4.4.2_06_k3.12.39_47-21.1.x86_64.rpm", "packageName": "xen-kmp-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-tools-debuginfo-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-tools-debuginfo", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06_k3.12.39_47-21.1", "arch": "x86_64", "packageFilename": "xen-kmp-default-4.4.2_06_k3.12.39_47-21.1.x86_64.rpm", "packageName": "xen-kmp-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-tools-domU-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-tools-domU", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-libs-debuginfo-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-libs-debuginfo", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-doc-html-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-doc-html", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-devel-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-tools-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-tools", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-debugsource-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-debugsource", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-libs-debuginfo-32bit-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-libs-debuginfo-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06_k3.12.39_47-21.1", "arch": "x86_64", "packageFilename": "xen-kmp-default-debuginfo-4.4.2_06_k3.12.39_47-21.1.x86_64.rpm", "packageName": "xen-kmp-default-debuginfo", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-libs-32bit-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-libs-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-tools-domU-debuginfo-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-tools-domU-debuginfo", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-libs-debuginfo-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-libs-debuginfo", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-libs-32bit-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-libs-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-libs-debuginfo-32bit-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-libs-debuginfo-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-debugsource-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-debugsource", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-debugsource-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-debugsource", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_06-21.1", "arch": "x86_64", "packageFilename": "xen-libs-4.4.2_06-21.1.x86_64.rpm", "packageName": "xen-libs", "operator": "lt"}], "description": "Xen was updated to fix seven security issues and one non-security bug.\n\n The following vulnerabilities were fixed:\n\n * CVE-2015-4103: Potential unintended writes to host MSI message data\n field via qemu (XSA-128) (bnc#931625)\n * CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests\n (XSA-129) (bnc#931626)\n * CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error messages\n (XSA-130) (bnc#931627)\n * CVE-2015-4106: Unmediated PCI register access in qemu (XSA-131)\n (bnc#931628)\n * CVE-2015-4163: GNTTABOP_swap_grant_ref operation misbehavior (XSA-134)\n (bnc#932790)\n * CVE-2015-3209: heap overflow in qemu pcnet controller allowing guest to\n host escape (XSA-135) (bnc#932770)\n * CVE-2015-4164: DoS through iret hypercall handler (XSA-136) (bnc#932996)\n\n The following non-security bug was fixed:\n\n * bnc#906689: let systemd schedule xencommons after network-online.target\n and remote-fs.target so that xendomains has access to remote shares\n\n", "edition": 1, "reporter": "Suse", "published": "2015-06-11T17:05:28", "title": "Security update for xen (important)", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-11T17:05:28", "href": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00004.html", "id": "SUSE-SU-2015:1042-1", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:57:34", "references": ["https://bugzilla.suse.com/931626", "https://bugzilla.suse.com/931625", "https://bugzilla.suse.com/932770", "https://bugzilla.suse.com/931627", "https://bugzilla.suse.com/931628", "https://download.suse.com/patch/finder/?keywords=664b696391d543da0f24d6d0b039a056", "https://bugzilla.suse.com/932996"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen", "packageFilename": "xen-4.1.6_08-0.13.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.1.6_08-0.13.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.1.6_08-0.13.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.1.6_08-0.13.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08_3.0.101_0.7.29-0.13.1", "packageName": "xen-kmp-trace", "packageFilename": "xen-kmp-trace-4.1.6_08_3.0.101_0.7.29-0.13.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.1.6_08-0.13.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen-doc-pdf", "packageFilename": "xen-doc-pdf-4.1.6_08-0.13.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.1.6_08-0.13.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen-doc-html", "packageFilename": "xen-doc-html-4.1.6_08-0.13.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08_3.0.101_0.7.29-0.13.1", "packageName": "xen-kmp-pae", "packageFilename": "xen-kmp-pae-4.1.6_08_3.0.101_0.7.29-0.13.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08_3.0.101_0.7.29-0.13.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.1.6_08_3.0.101_0.7.29-0.13.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08_3.0.101_0.7.29-0.13.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.1.6_08_3.0.101_0.7.29-0.13.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08_3.0.101_0.7.29-0.13.1", "packageName": "xen-kmp-trace", "packageFilename": "xen-kmp-trace-4.1.6_08_3.0.101_0.7.29-0.13.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.1.6_08-0.13.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen-libs-32bit", "packageFilename": "xen-libs-32bit-4.1.6_08-0.13.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server LTSS", "OSVersion": "11.2", "packageVersion": "4.1.6_08-0.13.1", "packageName": "xen-tools", "packageFilename": "xen-tools-4.1.6_08-0.13.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}], "description": "Xen was updated to fix six security issues:\n\n * CVE-2015-4103: Potential unintended writes to host MSI message data\n field via qemu. (XSA-128, bsc#931625)\n * CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests.\n (XSA-129, bsc#931626)\n * CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error\n messages. (XSA-130, bsc#931627)\n * CVE-2015-4106: Unmediated PCI register access in qemu. (XSA-131,\n bsc#931628)\n * CVE-2015-3209: Heap overflow in qemu pcnet controller allowing guest\n to host escape. (XSA-135, bsc#932770)\n * CVE-2015-4164: DoS through iret hypercall handler. (XSA-136,\n bsc#932996)\n\n Security Issues:\n\n * CVE-2015-4103\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4103\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4103</a>>\n * CVE-2015-4104\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4104\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4104</a>>\n * CVE-2015-4105\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4105\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4105</a>>\n * CVE-2015-4106\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4106\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4106</a>>\n * CVE-2015-4163\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4163\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4163</a>>\n * CVE-2015-4164\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4164\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4164</a>>\n * CVE-2015-3209\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3209\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3209</a>>\n\n", "edition": 1, "reporter": "Suse", "published": "2015-06-29T15:05:16", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "title": "Security update for Xen (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-29T15:05:16", "id": "SUSE-SU-2015:1157-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00030.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:37:36", "references": ["https://download.suse.com/patch/finder/?keywords=3ae6793ddbacaa600cc65649e1e37a48", "https://bugzilla.suse.com/931626", "https://bugzilla.suse.com/931625", "https://bugzilla.suse.com/932770", "https://bugzilla.suse.com/932790", "https://bugzilla.suse.com/931627", "https://bugzilla.suse.com/931628", "https://bugzilla.suse.com/932996"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-doc-html-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-doc-html", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-libs-32bit-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-libs-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08_3.0.101_0.47.55-0.9.1", "arch": "i586", "packageFilename": "xen-kmp-pae-4.2.5_08_3.0.101_0.47.55-0.9.1.i586.rpm", "packageName": "xen-kmp-pae", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-libs-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-libs", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-tools-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-tools", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-tools-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-tools", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-libs-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-libs", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-tools-domU-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-tools-domU", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "i586", "packageFilename": "xen-tools-domU-4.2.5_08-0.9.1.i586.rpm", "packageName": "xen-tools-domU", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "i586", "packageFilename": "xen-libs-4.2.5_08-0.9.1.i586.rpm", "packageName": "xen-libs", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-devel-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08_3.0.101_0.47.55-0.9.1", "arch": "i586", "packageFilename": "xen-kmp-pae-4.2.5_08_3.0.101_0.47.55-0.9.1.i586.rpm", "packageName": "xen-kmp-pae", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08_3.0.101_0.47.55-0.9.1", "arch": "x86_64", "packageFilename": "xen-kmp-default-4.2.5_08_3.0.101_0.47.55-0.9.1.x86_64.rpm", "packageName": "xen-kmp-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-doc-pdf-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-doc-pdf", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08_3.0.101_0.47.55-0.9.1", "arch": "i586", "packageFilename": "xen-kmp-default-4.2.5_08_3.0.101_0.47.55-0.9.1.i586.rpm", "packageName": "xen-kmp-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-doc-pdf-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-doc-pdf", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-libs-32bit-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-libs-32bit", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08_3.0.101_0.47.55-0.9.1", "arch": "x86_64", "packageFilename": "xen-kmp-default-4.2.5_08_3.0.101_0.47.55-0.9.1.x86_64.rpm", "packageName": "xen-kmp-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "i586", "packageFilename": "xen-libs-4.2.5_08-0.9.1.i586.rpm", "packageName": "xen-libs", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-tools-domU-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-tools-domU", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "i586", "packageFilename": "xen-devel-4.2.5_08-0.9.1.i586.rpm", "packageName": "xen-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08_3.0.101_0.47.55-0.9.1", "arch": "i586", "packageFilename": "xen-kmp-default-4.2.5_08_3.0.101_0.47.55-0.9.1.i586.rpm", "packageName": "xen-kmp-default", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "i586", "packageFilename": "xen-tools-domU-4.2.5_08-0.9.1.i586.rpm", "packageName": "xen-tools-domU", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "11.3", "packageVersion": "4.2.5_08-0.9.1", "arch": "x86_64", "packageFilename": "xen-doc-html-4.2.5_08-0.9.1.x86_64.rpm", "packageName": "xen-doc-html", "operator": "lt"}], "description": "Xen was updated to fix seven security vulnerabilities:\n\n * CVE-2015-4103: Potential unintended writes to host MSI message data\n field via qemu. (XSA-128, bnc#931625)\n * CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests.\n (XSA-129, bnc#931626)\n * CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error\n messages. (XSA-130, bnc#931627)\n * CVE-2015-4106: Unmediated PCI register access in qemu. (XSA-131,\n bnc#931628)\n * CVE-2015-4163: GNTTABOP_swap_grant_ref operation misbehavior.\n (XSA-134, bnc#932790)\n * CVE-2015-3209: Heap overflow in qemu pcnet controller allowing guest\n to host escape. (XSA-135, bnc#932770)\n * CVE-2015-4164: DoS through iret hypercall handler. (XSA-136,\n bnc#932996)\n\n Security Issues:\n\n * CVE-2015-4103\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4103\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4103</a>>\n * CVE-2015-4104\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4104\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4104</a>>\n * CVE-2015-4105\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4105\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4105</a>>\n * CVE-2015-4106\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4106\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4106</a>>\n * CVE-2015-4163\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4163\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4163</a>>\n * CVE-2015-4164\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4164\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4164</a>>\n * CVE-2015-3209\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3209\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3209</a>>\n\n", "edition": 1, "reporter": "Suse", "published": "2015-06-11T20:04:58", "title": "Security update for Xen (important)", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-11T20:04:58", "id": "SUSE-SU-2015:1045-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00007.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:43:37", "references": ["https://bugzilla.suse.com/861318", "https://bugzilla.suse.com/903680", "https://bugzilla.suse.com/919098", "https://bugzilla.suse.com/918998", "https://bugzilla.suse.com/906996", "https://bugzilla.suse.com/912011", "https://bugzilla.suse.com/918995", "https://bugzilla.suse.com/919464", "https://bugzilla.suse.com/895528", "https://bugzilla.suse.com/904255", "https://bugzilla.suse.com/910681", "https://bugzilla.suse.com/882089", "https://bugzilla.suse.com/901488", "https://bugzilla.suse.com/919663", "https://bugzilla.suse.com/910254"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-doc-html", "packageFilename": "xen-doc-html-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-libs-32bit", "packageFilename": "xen-libs-32bit-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen", "packageFilename": "xen-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-tools-debuginfo", "packageFilename": "xen-tools-debuginfo-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-libs-32bit", "packageFilename": "xen-libs-32bit-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-tools", "packageFilename": "xen-tools-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.1_10_k3.12.36_38-9.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.4.1_10_k3.12.36_38-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10_k3.12.36_38-9.1", "packageName": "xen-kmp-default-debuginfo", "packageFilename": "xen-kmp-default-debuginfo-4.4.1_10_k3.12.36_38-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-libs-debuginfo-32bit", "packageFilename": "xen-libs-debuginfo-32bit-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10_k3.12.36_38-9.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.4.1_10_k3.12.36_38-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.1_10_k3.12.36_38-9.1", "packageName": "xen-kmp-default-debuginfo", "packageFilename": "xen-kmp-default-debuginfo-4.4.1_10_k3.12.36_38-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-tools-domU-debuginfo", "packageFilename": "xen-tools-domU-debuginfo-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-libs-debuginfo-32bit", "packageFilename": "xen-libs-debuginfo-32bit-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.1_10-9.1", "packageName": "xen", "packageFilename": "xen-4.4.1_10-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}], "description": "The XEN hypervisor received updates to fix various security issues and\n bugs.\n\n The following security issues were fixed:\n - CVE-2015-2151: XSA-123: A hypervisor memory corruption due to x86\n emulator flaw.\n - CVE-2015-2045: XSA-122: Information leak through version information\n hypercall.\n - CVE-2015-2044: XSA-121: Information leak via internal x86 system device\n emulation.\n - CVE-2015-2152: XSA-119: HVM qemu was unexpectedly enabling emulated VGA\n graphics backends.\n - CVE-2014-3615: Information leakage when guest sets high graphics\n resolution.\n - CVE-2015-0361: XSA-116: A xen crash due to use after free on hvm guest\n teardown.\n - CVE-2014-9065, CVE-2014-9066: XSA-114: xen: p2m lock starvation.\n\n Also the following bugs were fixed:\n - bnc#919098 - XEN blktap device intermittently fails to connect\n - bnc#882089 - Windows 2012 R2 fails to boot up with greater than 60 vcpus\n - bnc#903680 - Problems with detecting free loop devices on Xen guest\n startup\n - bnc#861318 - xentop reports "Found interface vif101.0 but domain 101\n does not exist."\n - Update seabios to rel-1.7.3.1 which is the correct version for Xen 4.4\n - Enhancement to virsh/libvirtd "send-key" command The xen side small fix.\n (FATE#317240)\n - bnc#901488 - Intel ixgbe driver assigns rx/tx queues per core resulting\n in irq problems on servers with a large amount of CPU cores\n - bnc#910254 - SLES11 SP3 Xen VT-d igb NIC doesn't work\n - Add domain_migrate_constraints_set API to Xend's http interface\n (FATE#317239)\n - Restore missing fixes from block-dmmd script\n - bnc#904255 - XEN boot hangs in early boot on UEFI system\n - bsc#912011 - high ping latency after upgrade to latest SLES11SP3 on xen\n Dom0\n - Fix missing banner by restoring the figlet program.\n\n", "edition": 1, "reporter": "Suse", "published": "2015-03-27T10:04:56", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "title": "Security update for Xen (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2014-9065", "CVE-2015-2044", "CVE-2015-0361", "CVE-2015-2045", "CVE-2015-2151", "CVE-2014-9066", "CVE-2014-3615", "CVE-2015-2152"], "modified": "2015-03-27T10:04:56", "id": "SUSE-SU-2015:0613-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00031.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:40:57", "references": ["https://bugzilla.suse.com/861318", "https://bugzilla.suse.com/903680", "https://bugzilla.suse.com/919098", "https://bugzilla.suse.com/922706", "https://bugzilla.suse.com/918998", "https://bugzilla.suse.com/918995", "https://bugzilla.suse.com/919464", "https://bugzilla.suse.com/895528", "https://bugzilla.suse.com/922705", "https://bugzilla.suse.com/901488", "https://bugzilla.suse.com/919663", "https://bugzilla.suse.com/910254"], "affectedPackage": [{"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02_k3.11.10_29-41.1", "packageName": "xen-kmp-pae", "packageFilename": "xen-kmp-pae-4.3.4_02_k3.11.10_29-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen", "packageFilename": "xen-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-libs-32bit", "packageFilename": "xen-libs-32bit-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02_k3.11.10_29-41.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.3.4_02_k3.11.10_29-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02_k3.11.10_29-41.1", "packageName": "xen-kmp-default-debuginfo", "packageFilename": "xen-kmp-default-debuginfo-4.3.4_02_k3.11.10_29-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.3.4_02-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-tools-domU-debuginfo", "packageFilename": "xen-tools-domU-debuginfo-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.3.4_02-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.3.4_02-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02_k3.11.10_29-41.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.3.4_02_k3.11.10_29-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02_k3.11.10_29-41.1", "packageName": "xen-kmp-pae-debuginfo", "packageFilename": "xen-kmp-pae-debuginfo-4.3.4_02_k3.11.10_29-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-xend-tools-debuginfo", "packageFilename": "xen-xend-tools-debuginfo-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-doc-html", "packageFilename": "xen-doc-html-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-xend-tools", "packageFilename": "xen-xend-tools-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-libs-debuginfo-32bit", "packageFilename": "xen-libs-debuginfo-32bit-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02_k3.11.10_29-41.1", "packageName": "xen-kmp-desktop-debuginfo", "packageFilename": "xen-kmp-desktop-debuginfo-4.3.4_02_k3.11.10_29-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02_k3.11.10_29-41.1", "packageName": "xen-kmp-desktop", "packageFilename": "xen-kmp-desktop-4.3.4_02_k3.11.10_29-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.3.4_02-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02_k3.11.10_29-41.1", "packageName": "xen-kmp-desktop-debuginfo", "packageFilename": "xen-kmp-desktop-debuginfo-4.3.4_02_k3.11.10_29-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.3.4_02-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02_k3.11.10_29-41.1", "packageName": "xen-kmp-desktop", "packageFilename": "xen-kmp-desktop-4.3.4_02_k3.11.10_29-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-tools-domU-debuginfo", "packageFilename": "xen-tools-domU-debuginfo-4.3.4_02-41.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-tools", "packageFilename": "xen-tools-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02-41.1", "packageName": "xen-tools-debuginfo", "packageFilename": "xen-tools-debuginfo-4.3.4_02-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.1", "packageVersion": "4.3.4_02_k3.11.10_29-41.1", "packageName": "xen-kmp-default-debuginfo", "packageFilename": "xen-kmp-default-debuginfo-4.3.4_02_k3.11.10_29-41.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}], "description": "Xen was updated to 4.3.4 to fix multiple vulnerabities and non-security\n bugs.\n\n The following vulnerabilities were fixed:\n\n - Long latency MMIO mapping operations are not preemptible (XSA-125\n CVE-2015-2752 bnc#922705)\n - Unmediated PCI command register access in qemu (XSA-126 CVE-2015-2756\n bnc#922706)\n - Hypervisor memory corruption due to x86 emulator flaw (bnc#919464\n CVE-2015-2151 XSA-123)\n - Information leak through version information hypercall (bnc#918998\n CVE-2015-2045 XSA-122)\n - Information leak via internal x86 system device emulation (bnc#918995\n (CVE-2015-2044 XSA-121)\n - HVM qemu unexpectedly enabling emulated VGA graphics backends\n (bnc#919663 CVE-2015-2152 XSA-119)\n - information leakage when guest sets high resolution (bnc#895528\n CVE-2014-3615)\n\n The following non-security bugs were fixed:\n\n - L3: XEN blktap device intermittently fails to connect (bnc#919098)\n - Problems with detecting free loop devices on Xen guest startup\n (bnc#903680)\n - xentop reports "Found interface vif101.0 but domain 101 does not exist."\n (bnc#861318)\n - Intel ixgbe driver assigns rx/tx queues per core resulting in irq\n problems on servers with a large amount of CPU cores (bnc#901488)\n - SLES11 SP3 Xen VT-d igb NIC doesn't work (bnc#910254)\n\n", "edition": 1, "reporter": "Suse", "published": "2015-04-20T16:04:56", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "title": "Security update for xen (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2015-2044", "CVE-2015-2045", "CVE-2015-2752", "CVE-2015-2151", "CVE-2015-2756", "CVE-2014-3615", "CVE-2015-2152"], "modified": "2015-04-20T16:04:56", "id": "OPENSUSE-SU-2015:0732-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00014.html", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:09:51", "references": ["https://bugzilla.suse.com/show_bug.cgi?id=905467", "https://bugzilla.suse.com/show_bug.cgi?id=901317", "https://bugzilla.suse.com/show_bug.cgi?id=903970", "https://bugzilla.suse.com/show_bug.cgi?id=866902", "https://bugzilla.suse.com/show_bug.cgi?id=903359", "https://bugzilla.suse.com/show_bug.cgi?id=826717", "https://bugzilla.suse.com/show_bug.cgi?id=889526", "https://bugzilla.suse.com/show_bug.cgi?id=882089", "https://bugzilla.suse.com/show_bug.cgi?id=898772", "https://bugzilla.suse.com/show_bug.cgi?id=905465", "https://bugzilla.suse.com/show_bug.cgi?id=906439", "https://bugzilla.suse.com/show_bug.cgi?id=903967", "https://bugzilla.suse.com/show_bug.cgi?id=903357", "https://bugzilla.suse.com/show_bug.cgi?id=906996", "https://bugzilla.suse.com/show_bug.cgi?id=910681", "https://bugzilla.suse.com/show_bug.cgi?id=896023", "https://bugzilla.suse.com/show_bug.cgi?id=900292", "https://bugzilla.suse.com/show_bug.cgi?id=904255", "https://bugzilla.suse.com/show_bug.cgi?id=897906", "https://bugzilla.suse.com/show_bug.cgi?id=903850"], "affectedPackage": [{"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen", "packageFilename": "xen-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-doc-html", "packageFilename": "xen-doc-html-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.4.1_08-9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-libs-debuginfo-32bit", "packageFilename": "xen-libs-debuginfo-32bit-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.4.1_08-9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.4.1_08-9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08_k3.16.7_7-9.1", "packageName": "xen-kmp-desktop", "packageFilename": "xen-kmp-desktop-4.4.1_08_k3.16.7_7-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-tools-debuginfo", "packageFilename": "xen-tools-debuginfo-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.4.1_08-9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08_k3.16.7_7-9.1", "packageName": "xen-kmp-desktop-debuginfo", "packageFilename": "xen-kmp-desktop-debuginfo-4.4.1_08_k3.16.7_7-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-tools", "packageFilename": "xen-tools-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08_k3.16.7_7-9.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.4.1_08_k3.16.7_7-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-tools-domU-debuginfo", "packageFilename": "xen-tools-domU-debuginfo-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.4.1_08-9.1.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08_k3.16.7_7-9.1", "packageName": "xen-kmp-default-debuginfo", "packageFilename": "xen-kmp-default-debuginfo-4.4.1_08_k3.16.7_7-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-libs-32bit", "packageFilename": "xen-libs-32bit-4.4.1_08-9.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "13.2", "packageVersion": "4.4.1_08-9.1", "packageName": "xen-tools-domU-debuginfo", "packageFilename": "xen-tools-domU-debuginfo-4.4.1_08-9.1.i586.rpm", "arch": "i586", "operator": "lt"}], "description": "The XEN virtualization was updated to fix bugs and security issues:\n\n Security issues fixed: CVE-2015-0361: XSA-116: xen: xen crash due to use\n after free on hvm guest teardown\n\n CVE-2014-9065, CVE-2014-9066: XSA-114: xen: p2m lock starvation\n\n CVE-2014-9030: XSA-113: Guest effectable page reference leak in\n MMU_MACHPHYS_UPDATE handling\n\n CVE-2014-8867: XSA-112: xen: Insufficient bounding of "REP MOVS" to MMIO\n emulated inside the hypervisor\n\n CVE-2014-8866: XSA-111: xen: Excessive checking in compatibility mode\n hypercall argument translation\n\n CVE-2014-8595: XSA-110: xen: Missing privilege level checks in x86\n emulation of far branches\n\n CVE-2014-8594: XSA-109: xen: Insufficient restrictions on certain MMU\n update hypercalls\n\n CVE-2013-3495: XSA-59: xen: Intel VT-d Interrupt Remapping engines can be\n evaded by native NMI interrupts\n\n CVE-2014-5146, CVE-2014-5149: xen: XSA-97 Long latency virtual-mmu\n operations are not preemptible\n\n Bugs fixed:\n - Restore missing fixes from block-dmmd script\n\n - bnc#904255 - XEN boot hangs in early boot on UEFI system\n\n - Fix missing banner by restoring figlet program\n\n - bnc#903357 - Corrupted save/restore test leaves orphaned data in xenstore\n\n - bnc#903359 - Temporary migration name is not cleaned up after migration\n\n - bnc#903850 - Xen: guest user mode triggerable VM exits not handled by\n hypervisor\n\n - bnc#866902 - Xen save/restore of HVM guests cuts off disk and networking\n\n - bnc#901317 - increase limit domUloader to 32MB\n\n - bnc#898772 - SLES 12 RC3 - XEN Host crashes when assigning non-VF device\n (SR-IOV) to guest\n\n - bnc#882089 - Windows 2012 R2 fails to boot up with greater than 60 vcpus\n\n - bsc#900292 - xl: change default dump directory\n\n - Update xen2libvirt.py to better detect and handle file formats\n\n - bnc#882089 - Windows 2012 R2 fails to boot up with greater than 60 vcpus\n\n\n - bnc#897906 - libxc: check return values on mmap() and madvise()\n on xc_alloc_hypercall_buffer()\n\n - bnc#896023 - Adjust xentop column layout\n\n", "edition": 1, "reporter": "Suse", "published": "2015-02-11T15:05:20", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "title": "Security update for xen (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2014-5146", "CVE-2014-9065", "CVE-2013-3495", "CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2014-9066", "CVE-2014-5149", "CVE-2014-9030"], "modified": "2015-02-11T15:05:20", "id": "OPENSUSE-SU-2015:0256-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:43:37", "references": ["https://bugzilla.suse.com/927967", "https://bugzilla.suse.com/929339", "https://bugzilla.suse.com/922709", "https://bugzilla.suse.com/922705"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen", "packageFilename": "xen-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-doc-html", "packageFilename": "xen-doc-html-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-libs-debuginfo-32bit", "packageFilename": "xen-libs-debuginfo-32bit-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04_k3.12.39_47-18.1", "packageName": "xen-kmp-default-debuginfo", "packageFilename": "xen-kmp-default-debuginfo-4.4.2_04_k3.12.39_47-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-tools-domU-debuginfo", "packageFilename": "xen-tools-domU-debuginfo-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-libs-32bit", "packageFilename": "xen-libs-32bit-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-libs-debuginfo-32bit", "packageFilename": "xen-libs-debuginfo-32bit-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-libs-debuginfo", "packageFilename": "xen-libs-debuginfo-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-tools-debuginfo", "packageFilename": "xen-tools-debuginfo-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen", "packageFilename": "xen-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_04_k3.12.39_47-18.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.4.2_04_k3.12.39_47-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-libs-32bit", "packageFilename": "xen-libs-32bit-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04_k3.12.39_47-18.1", "packageName": "xen-kmp-default", "packageFilename": "xen-kmp-default-4.4.2_04_k3.12.39_47-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-debugsource", "packageFilename": "xen-debugsource-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-tools", "packageFilename": "xen-tools-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-libs", "packageFilename": "xen-libs-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Desktop", "OSVersion": "12", "packageVersion": "4.4.2_04_k3.12.39_47-18.1", "packageName": "xen-kmp-default-debuginfo", "packageFilename": "xen-kmp-default-debuginfo-4.4.2_04_k3.12.39_47-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-tools-domU", "packageFilename": "xen-tools-domU-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Software Development Kit", "OSVersion": "12", "packageVersion": "4.4.2_04-18.1", "packageName": "xen-devel", "packageFilename": "xen-devel-4.4.2_04-18.1.x86_64.rpm", "arch": "x86_64", "operator": "lt"}], "description": "XEN was updated to fix two security issues and bugs.\n\n Security issues fixed:\n * CVE-2015-3340: Xen did not initialize certain fields, which allowed\n certain remote service domains to obtain sensitive information from\n memory via a (1) XEN_DOMCTL_gettscinfo or (2)\n XEN_SYSCTL_getdomaininfolist request.\n\n * CVE-2015-2751: Xen, when using toolstack disaggregation, allowed remote\n domains with partial management control to cause a denial of service\n (host lock) via unspecified domctl operations.\n\n * CVE-2015-2752: The XEN_DOMCTL_memory_mapping hypercall in Xen, when\n using a PCI passthrough device, was not preemptable, which allowed local\n x86 HVM domain users to cause a denial of service (host CPU consumption)\n via a crafted request to the device model (qemu-dm).\n\n * CVE-2015-3456: Fixed a buffer overflow in the floppy drive emulation,\n which could be used to denial of service attacks or potential code\n execution against the host.\n\n Bugs fixed:\n - xentop: Fix memory leak on read failure\n\n", "edition": 1, "reporter": "Suse", "published": "2015-05-21T09:04:52", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "type": "suse", "title": "Security update for xen (important)", "bulletinFamily": "unix", "cvelist": ["CVE-2015-3340", "CVE-2015-2752", "CVE-2015-3456", "CVE-2015-2751"], "modified": "2015-05-21T09:04:52", "id": "SUSE-SU-2015:0923-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00018.html", "cvss": {"score": 7.7, "vector": "AV:ADJACENT_NETWORK/AC:LOW/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:57", "references": [], "description": "\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n- -------------------------------------------------------------------------\r\nDebian Security Advisory DSA-3140-1 security@debian.org\r\nhttp://www.debian.org/security/ Moritz Muehlenhoff\r\nJanuary 27, 2015 http://www.debian.org/security/faq\r\n- -------------------------------------------------------------------------\r\n\r\nPackage : xen\r\nCVE ID : CVE-2014-8594 CVE-2014-8595 CVE-2014-8866 CVE-2014-8867 \r\n CVE-2014-9030\r\n\r\nMultiple security issues have been discovered in the Xen virtualisation\r\nsolution which may result in denial of service, information disclosure\r\nor privilege escalation.\r\n\r\nCVE-2014-8594\r\n\r\n Roger Pau Monne and Jan Beulich discovered that incomplete\r\n restrictions on MMU update hypercalls may result in privilege\r\n escalation.\r\n\r\nCVE-2014-8595\r\n\r\n Jan Beulich discovered that missing privilege level checks in the\r\n x86 emulation of far branches may result in privilege escalation.\r\n\r\nCVE-2014-8866\r\n\r\n Jan Beulich discovered that an error in compatibility mode hypercall\r\n argument translation may result in denial of service.\r\n\r\nCVE-2014-8867\r\n\r\n Jan Beulich discovered that an insufficient restriction in\r\n acceleration support for the "REP MOVS" instruction may result in\r\n denial of service.\r\n\r\nCVE-2014-9030\r\n\r\n Andrew Cooper discovered a page reference leak in MMU_MACHPHYS_UPDATE\r\n handling, resulting in denial of service.\r\n\r\nFor the stable distribution (wheezy), these problems have been fixed in\r\nversion 4.1.4-3+deb7u4.\r\n\r\nFor the upcoming stable distribution (jessie), these problems have been\r\nfixed in version 4.4.1-4.\r\n\r\nFor the unstable distribution (sid), these problems have been fixed in\r\nversion 4.4.1-4.\r\n\r\nWe recommend that you upgrade your xen packages.\r\n\r\nFurther information about Debian Security Advisories, how to apply\r\nthese updates to your system and frequently asked questions can be\r\nfound at: https://www.debian.org/security/\r\n\r\nMailing list: debian-security-announce@lists.debian.org\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1\r\n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\r\n9IwVAOzHz+HymOHT02af\r\n=5heI\r\n-----END PGP SIGNATURE-----\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2015-02-02T00:00:00", "title": "[SECURITY] [DSA 3140-1] xen security update", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:57", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2014-8594", "CVE-2014-9030"], "modified": "2015-02-02T00:00:00", "id": "SECURITYVULNS:DOC:31685", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:31685", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:59", "references": [], "description": "\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n- -------------------------------------------------------------------------\r\nDebian Security Advisory DSA-3286-1 security@debian.org\r\nhttps://www.debian.org/security/ Moritz Muehlenhoff\r\nJune 13, 2015 https://www.debian.org/security/faq\r\n- -------------------------------------------------------------------------\r\n\r\nPackage : xen\r\nCVE ID : CVE-2015-3209 CVE-2015-4103 CVE-2015-4104 CVE-2015-4105\r\n CVE-2015-4106 CVE-2015-4163 CVE-2015-4164\r\n\r\nMultiple security issues have been found in the Xen virtualisation\r\nsolution:\r\n \r\nCVE-2015-3209\r\n\r\n Matt Tait discovered a flaw in the way QEMU's AMD PCnet Ethernet\r\n emulation handles multi-TMD packets with a length above 4096 bytes.\r\n A privileged guest user in a guest with an AMD PCNet ethernet card\r\n enabled can potentially use this flaw to execute arbitrary code on\r\n the host with the privileges of the hosting QEMU process.\r\n\r\nCVE-2015-4103\r\n\r\n Jan Beulich discovered that the QEMU Xen code does not properly\r\n restrict write access to the host MSI message data field, allowing\r\n a malicious guest to cause a denial of service.\r\n\r\nCVE-2015-4104\r\n\r\n Jan Beulich discovered that the QEMU Xen code does not properly\r\n restrict access to PCI MSI mask bits, allowing a malicious guest to\r\n cause a denial of service.\r\n\r\nCVE-2015-4105\r\n\r\n Jan Beulich reported that the QEMU Xen code enables logging for PCI\r\n MSI-X pass-through error messages, allowing a malicious guest to\r\n cause a denial of service.\r\n\r\nCVE-2015-4106\r\n\r\n Jan Beulich discovered that the QEMU Xen code does not properly restrict\r\n write access to the PCI config space for certain PCI pass-through devices,\r\n allowing a malicious guest to cause a denial of service, obtain sensitive\r\n information or potentially execute arbitrary code.\r\n\r\nCVE-2015-4163\r\n\r\n Jan Beulich discovered that a missing version check in the\r\n GNTTABOP_swap_grant_ref hypercall handler may result in denial of service.\r\n This only applies to Debian stable/jessie.\r\n\r\nCVE-2015-4164\r\n\r\n Andrew Cooper discovered a vulnerability in the iret hypercall handler,\r\n which may result in denial of service.\r\n\r\nFor the oldstable distribution (wheezy), these problems have been fixed\r\nin version 4.1.4-3+deb7u8. \r\n\r\nFor the stable distribution (jessie), these problems have been fixed in\r\nversion 4.4.1-9+deb8u1. CVE-2015-3209, CVE-2015-4103, CVE-2015-4104,\r\nCVE-2015-4105 and CVE-2015-4106 don't affect the Xen package in stable\r\njessie, it uses the standard qemu package and has already been fixed in\r\nDSA-3284-1.\r\n\r\nFor the unstable distribution (sid), these problems will be fixed soon.\r\n\r\nWe recommend that you upgrade your xen packages.\r\n\r\nFurther information about Debian Security Advisories, how to apply\r\nthese updates to your system and frequently asked questions can be\r\nfound at: https://www.debian.org/security/\r\n\r\nMailing list: debian-security-announce@lists.debian.org\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1\r\n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\r\nngY7U6RlmLRNSaXd+xvR\r\n=gL/x\r\n-----END PGP SIGNATURE-----\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2015-06-21T00:00:00", "title": "[SECURITY] [DSA 3286-1] xen security update", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:59", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-21T00:00:00", "id": "SECURITYVULNS:DOC:32231", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:32231", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:00", "references": ["https://vulners.com/securityvulns/securityvulns:doc:32207", "https://vulners.com/securityvulns/securityvulns:doc:32231"], "description": "DoS, privilege escalation, information disclosure, code execution.", "edition": 1, "reporter": "UBUNTU", "published": "2015-06-21T00:00:00", "title": "libvirt / qemu / Xen multiple security vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:00", "vector": "NONE", "value": 9.3}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "qemu", "version": "2.2", "operator": "eq"}, {"name": "Xen", "version": "4.5", "operator": "eq"}], "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4037", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-21T00:00:00", "id": "SECURITYVULNS:VULN:14532", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:14532", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:59", "references": [], "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-2630-1\r\nJune 10, 2015\r\n\r\nqemu, qemu-kvm vulnerabilities\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 15.04\r\n- Ubuntu 14.10\r\n- Ubuntu 14.04 LTS\r\n- Ubuntu 12.04 LTS\r\n\r\nSummary:\r\n\r\nSeveral security issues were fixed in QEMU.\r\n\r\nSoftware Description:\r\n- qemu: Machine emulator and virtualizer\r\n- qemu-kvm: Machine emulator and virtualizer\r\n\r\nDetails:\r\n\r\nMatt Tait discovered that QEMU incorrectly handled the virtual PCNET\r\ndriver. A malicious guest could use this issue to cause a denial of\r\nservice, or possibly execute arbitrary code on the host as the user running\r\nthe QEMU process. In the default installation, when QEMU is used with\r\nlibvirt, attackers would be isolated by the libvirt AppArmor profile.\r\n(CVE-2015-3209)\r\n\r\nKurt Seifried discovered that QEMU incorrectly handled certain temporary\r\nfiles. A local attacker could use this issue to cause a denial of service.\r\n(CVE-2015-4037)\r\n\r\nJan Beulich discovered that the QEMU Xen code incorrectly restricted write\r\naccess to the host MSI message data field. A malicious guest could use this\r\nissue to cause a denial of service. This issue only applied to Ubuntu 14.04\r\nLTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4103)\r\n\r\nJan Beulich discovered that the QEMU Xen code incorrectly restricted access\r\nto the PCI MSI mask bits. A malicious guest could use this issue to cause a\r\ndenial of service. This issue only applied to Ubuntu 14.04 LTS, Ubuntu\r\n14.10 and Ubuntu 15.04. (CVE-2015-4104)\r\n\r\nJan Beulich discovered that the QEMU Xen code incorrectly handled MSI-X\r\nerror messages. A malicious guest could use this issue to cause a denial of\r\nservice. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and\r\nUbuntu 15.04. (CVE-2015-4105)\r\n\r\nJan Beulich discovered that the QEMU Xen code incorrectly restricted write\r\naccess to the PCI config space. A malicious guest could use this issue to\r\ncause a denial of service, obtain sensitive information, or possibly\r\nexecute arbitrary code. This issue only applied to Ubuntu 14.04 LTS,\r\nUbuntu 14.10 and Ubuntu 15.04. (CVE-2015-4106)\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 15.04:\r\n qemu-system 1:2.2+dfsg-5expubuntu9.2\r\n qemu-system-aarch64 1:2.2+dfsg-5expubuntu9.2\r\n qemu-system-arm 1:2.2+dfsg-5expubuntu9.2\r\n qemu-system-mips 1:2.2+dfsg-5expubuntu9.2\r\n qemu-system-misc 1:2.2+dfsg-5expubuntu9.2\r\n qemu-system-ppc 1:2.2+dfsg-5expubuntu9.2\r\n qemu-system-sparc 1:2.2+dfsg-5expubuntu9.2\r\n qemu-system-x86 1:2.2+dfsg-5expubuntu9.2\r\n\r\nUbuntu 14.10:\r\n qemu-system 2.1+dfsg-4ubuntu6.7\r\n qemu-system-aarch64 2.1+dfsg-4ubuntu6.7\r\n qemu-system-arm 2.1+dfsg-4ubuntu6.7\r\n qemu-system-mips 2.1+dfsg-4ubuntu6.7\r\n qemu-system-misc 2.1+dfsg-4ubuntu6.7\r\n qemu-system-ppc 2.1+dfsg-4ubuntu6.7\r\n qemu-system-sparc 2.1+dfsg-4ubuntu6.7\r\n qemu-system-x86 2.1+dfsg-4ubuntu6.7\r\n\r\nUbuntu 14.04 LTS:\r\n qemu-system 2.0.0+dfsg-2ubuntu1.13\r\n qemu-system-aarch64 2.0.0+dfsg-2ubuntu1.13\r\n qemu-system-arm 2.0.0+dfsg-2ubuntu1.13\r\n qemu-system-mips 2.0.0+dfsg-2ubuntu1.13\r\n qemu-system-misc 2.0.0+dfsg-2ubuntu1.13\r\n qemu-system-ppc 2.0.0+dfsg-2ubuntu1.13\r\n qemu-system-sparc 2.0.0+dfsg-2ubuntu1.13\r\n qemu-system-x86 2.0.0+dfsg-2ubuntu1.13\r\n\r\nUbuntu 12.04 LTS:\r\n qemu-kvm 1.0+noroms-0ubuntu14.23\r\n\r\nAfter a standard system update you need to restart all QEMU virtual\r\nmachines to make all the necessary changes.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-2630-1\r\n CVE-2015-3209, CVE-2015-4037, CVE-2015-4103, CVE-2015-4104,\r\n CVE-2015-4105, CVE-2015-4106\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/qemu/1:2.2+dfsg-5expubuntu9.2\r\n https://launchpad.net/ubuntu/+source/qemu/2.1+dfsg-4ubuntu6.7\r\n https://launchpad.net/ubuntu/+source/qemu/2.0.0+dfsg-2ubuntu1.13\r\n https://launchpad.net/ubuntu/+source/qemu-kvm/1.0+noroms-0ubuntu14.23\r\n\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2015-06-13T00:00:00", "title": "[USN-2630-1] QEMU vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:59", "vector": "NONE", "value": 7.2}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4037", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-13T00:00:00", "id": "SECURITYVULNS:DOC:32207", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:32207", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:09:59", "references": ["https://vulners.com/securityvulns/securityvulns:doc:31784"], "description": "Information leakage, DoS, privilege escalation.", "edition": 1, "reporter": "BUGTRAQ", "published": "2015-03-15T00:00:00", "title": "Xen multiple security vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:59", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "Xen", "version": "3.2", "operator": "eq"}, {"name": "Xen", "version": "4.5", "operator": "eq"}], "cvelist": ["CVE-2015-2044", "CVE-2015-2045", "CVE-2015-2151"], "modified": "2015-03-15T00:00:00", "id": "SECURITYVULNS:VULN:14307", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:14307", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:57", "references": [], "description": "\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n- -------------------------------------------------------------------------\r\nDebian Security Advisory DSA-3181-1 security@debian.org\r\nhttp://www.debian.org/security/ Moritz Muehlenhoff\r\nMarch 10, 2015 http://www.debian.org/security/faq\r\n- -------------------------------------------------------------------------\r\n\r\nPackage : xen\r\nCVE ID : CVE-2015-2044 CVE-2015-2045 CVE-2015-2151\r\n\r\nMultiple security issues have been found in the Xen virtualisation\r\nsolution:\r\n\r\nCVE-2015-2044\r\n\r\n Information leak via x86 system device emulation.\r\n\r\nCVE-2015-2045\r\n\r\n Information leak in the HYPERVISOR_xen_version() hypercall.\r\n\r\nCVE-2015-2151\r\n\r\n Missing input sanitising in the x86 emulator could result in\r\n information disclosure, denial of service or potentially\r\n privilege escalation.\r\n\r\nIn addition the Xen developers reported an unfixable limitation in the\r\nhandling of non-standard PCI devices. Please refer to\r\nhttp://xenbits.xen.org/xsa/advisory-124.html for further information.\r\n\r\nFor the stable distribution (wheezy), these problems have been fixed in\r\nversion 4.1.4-3+deb7u5.\r\n\r\nFor the unstable distribution (sid), these problems will be fixed soon.\r\n\r\nWe recommend that you upgrade your xen packages.\r\n\r\nFurther information about Debian Security Advisories, how to apply\r\nthese updates to your system and frequently asked questions can be\r\nfound at: https://www.debian.org/security/\r\n\r\nMailing list: debian-security-announce@lists.debian.org\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1\r\n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\r\n+ugpkYC8a0vGIuIPduW/\r\n=78BW\r\n-----END PGP SIGNATURE-----\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2015-03-15T00:00:00", "title": "[SECURITY] [DSA 3181-1] xen security update", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:57", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2015-2044", "CVE-2015-2045", "CVE-2015-2151"], "modified": "2015-03-15T00:00:00", "id": "SECURITYVULNS:DOC:31784", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:31784", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:59", "references": [], "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-2608-1\r\nMay 13, 2015\r\n\r\nqemu, qemu-kvm vulnerabilities\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 15.04\r\n- Ubuntu 14.10\r\n- Ubuntu 14.04 LTS\r\n- Ubuntu 12.04 LTS\r\n\r\nSummary:\r\n\r\nSeveral security issues were fixed in QEMU.\r\n\r\nSoftware Description:\r\n- qemu: Machine emulator and virtualizer\r\n- qemu-kvm: Machine emulator and virtualizer\r\n\r\nDetails:\r\n\r\nJason Geffner discovered that QEMU incorrectly handled the virtual floppy\r\ndriver. This issue is known as VENOM. A malicious guest could use this\r\nissue to cause a denial of service, or possibly execute arbitrary code on\r\nthe host as the user running the QEMU process. In the default installation,\r\nwhen QEMU is used with libvirt, attackers would be isolated by the libvirt\r\nAppArmor profile. (CVE-2015-3456)\r\n\r\nDaniel P. Berrange discovered that QEMU incorrectly handled VNC websockets.\r\nA remote attacker could use this issue to cause QEMU to consume memory,\r\nresulting in a denial of service. This issue only affected Ubuntu 14.04\r\nLTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-1779)\r\n\r\nJan Beulich discovered that QEMU, when used with Xen, didn't properly\r\nrestrict access to PCI command registers. A malicious guest could use this\r\nissue to cause a denial of service. This issue only affected Ubuntu 14.04\r\nLTS and Ubuntu 14.10. (CVE-2015-2756)\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 15.04:\r\n qemu-system 1:2.2+dfsg-5expubuntu9.1\r\n qemu-system-aarch64 1:2.2+dfsg-5expubuntu9.1\r\n qemu-system-arm 1:2.2+dfsg-5expubuntu9.1\r\n qemu-system-mips 1:2.2+dfsg-5expubuntu9.1\r\n qemu-system-misc 1:2.2+dfsg-5expubuntu9.1\r\n qemu-system-ppc 1:2.2+dfsg-5expubuntu9.1\r\n qemu-system-sparc 1:2.2+dfsg-5expubuntu9.1\r\n qemu-system-x86 1:2.2+dfsg-5expubuntu9.1\r\n\r\nUbuntu 14.10:\r\n qemu-system 2.1+dfsg-4ubuntu6.6\r\n qemu-system-aarch64 2.1+dfsg-4ubuntu6.6\r\n qemu-system-arm 2.1+dfsg-4ubuntu6.6\r\n qemu-system-mips 2.1+dfsg-4ubuntu6.6\r\n qemu-system-misc 2.1+dfsg-4ubuntu6.6\r\n qemu-system-ppc 2.1+dfsg-4ubuntu6.6\r\n qemu-system-sparc 2.1+dfsg-4ubuntu6.6\r\n qemu-system-x86 2.1+dfsg-4ubuntu6.6\r\n\r\nUbuntu 14.04 LTS:\r\n qemu-system 2.0.0+dfsg-2ubuntu1.11\r\n qemu-system-aarch64 2.0.0+dfsg-2ubuntu1.11\r\n qemu-system-arm 2.0.0+dfsg-2ubuntu1.11\r\n qemu-system-mips 2.0.0+dfsg-2ubuntu1.11\r\n qemu-system-misc 2.0.0+dfsg-2ubuntu1.11\r\n qemu-system-ppc 2.0.0+dfsg-2ubuntu1.11\r\n qemu-system-sparc 2.0.0+dfsg-2ubuntu1.11\r\n qemu-system-x86 2.0.0+dfsg-2ubuntu1.11\r\n\r\nUbuntu 12.04 LTS:\r\n qemu-kvm 1.0+noroms-0ubuntu14.22\r\n\r\nAfter a standard system update you need to restart all QEMU virtual\r\nmachines to make all the necessary changes.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-2608-1\r\n CVE-2015-1779, CVE-2015-2756, CVE-2015-3456\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/qemu/1:2.2+dfsg-5expubuntu9.1\r\n https://launchpad.net/ubuntu/+source/qemu/2.1+dfsg-4ubuntu6.6\r\n https://launchpad.net/ubuntu/+source/qemu/2.0.0+dfsg-2ubuntu1.11\r\n https://launchpad.net/ubuntu/+source/qemu-kvm/1.0+noroms-0ubuntu14.22\r\n\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2015-05-17T00:00:00", "title": "[USN-2608-1] QEMU vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:59", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2015-1779", "CVE-2015-3456", "CVE-2015-2756"], "modified": "2015-05-17T00:00:00", "id": "SECURITYVULNS:DOC:32124", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:32124", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:09:59", "references": ["https://vulners.com/securityvulns/securityvulns:doc:31685"], "description": "Invalid page reference handling.", "edition": 1, "reporter": "BUGTRAQ", "published": "2015-02-02T00:00:00", "title": "Xen DoS", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:59", "vector": "NONE", "value": 9.3}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "Xen", "version": "4.4", "operator": "eq"}], "cvelist": ["CVE-2014-9030"], "modified": "2015-02-02T00:00:00", "id": "SECURITYVULNS:VULN:14249", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:14249", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:00", "references": ["https://vulners.com/securityvulns/securityvulns:doc:32124", "https://vulners.com/securityvulns/securityvulns:doc:31996"], "description": "Crash on PCI registers, IDE controller and Physical Region Descriptor Table decoder. Code execution.", "edition": 1, "reporter": "BUGTRAQ", "published": "2015-05-17T00:00:00", "title": "libvirt / qemu security vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:00", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "qemu", "version": "2.1", "operator": "eq"}, {"name": "qemu", "version": "1.6", "operator": "eq"}], "cvelist": ["CVE-2014-9718", "CVE-2015-1779", "CVE-2015-3456", "CVE-2015-2756"], "modified": "2015-05-17T00:00:00", "id": "SECURITYVULNS:VULN:14442", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:14442", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "debian": [{"lastseen": "2016-09-02T18:37:20", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "libxen-4.1_4.1.4-3+deb7u4_all.deb", "packageName": "libxen-4.1", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "xen-docs-4.1_4.1.4-3+deb7u4_all.deb", "packageName": "xen-docs-4.1", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "xen-utils-common_4.1.4-3+deb7u4_all.deb", "packageName": "xen-utils-common", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "xen-system-amd64_4.1.4-3+deb7u4_all.deb", "packageName": "xen-system-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "xen_4.1.4-3+deb7u4_all.deb", "packageName": "xen", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "libxen-ocaml-dev_4.1.4-3+deb7u4_all.deb", "packageName": "libxen-ocaml-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "xen-hypervisor-4.1-amd64_4.1.4-3+deb7u4_all.deb", "packageName": "xen-hypervisor-4.1-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "libxenstore3.0_4.1.4-3+deb7u4_all.deb", "packageName": "libxenstore3.0", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "xen-system-i386_4.1.4-3+deb7u4_all.deb", "packageName": "xen-system-i386", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "xen-hypervisor-4.1-i386_4.1.4-3+deb7u4_all.deb", "packageName": "xen-hypervisor-4.1-i386", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "xen-utils-4.1_4.1.4-3+deb7u4_all.deb", "packageName": "xen-utils-4.1", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "libxen-dev_4.1.4-3+deb7u4_all.deb", "packageName": "libxen-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "libxen-ocaml_4.1.4-3+deb7u4_all.deb", "packageName": "libxen-ocaml", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u4", "arch": "all", "packageFilename": "xenstore-utils_4.1.4-3+deb7u4_all.deb", "packageName": "xenstore-utils", "operator": "lt"}], "description": "Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation.\n\n * [CVE-2014-8594](<https://security-tracker.debian.org/tracker/CVE-2014-8594>)\n\nRoger Pau Monne and Jan Beulich discovered that incomplete restrictions on MMU update hypercalls may result in privilege escalation.\n\n * [CVE-2014-8595](<https://security-tracker.debian.org/tracker/CVE-2014-8595>)\n\nJan Beulich discovered that missing privilege level checks in the x86 emulation of far branches may result in privilege escalation.\n\n * [CVE-2014-8866](<https://security-tracker.debian.org/tracker/CVE-2014-8866>)\n\nJan Beulich discovered that an error in compatibility mode hypercall argument translation may result in denial of service.\n\n * [CVE-2014-8867](<https://security-tracker.debian.org/tracker/CVE-2014-8867>)\n\nJan Beulich discovered that an insufficient restriction in acceleration support for the REP MOVS instruction may result in denial of service.\n\n * [CVE-2014-9030](<https://security-tracker.debian.org/tracker/CVE-2014-9030>)\n\nAndrew Cooper discovered a page reference leak in MMU_MACHPHYS_UPDATE handling, resulting in denial of service.\n\nFor the stable distribution (wheezy), these problems have been fixed in version 4.1.4-3+deb7u4.\n\nFor the upcoming stable distribution (jessie), these problems have been fixed in version 4.4.1-4.\n\nFor the unstable distribution (sid), these problems have been fixed in version 4.4.1-4.\n\nWe recommend that you upgrade your xen packages.", "edition": 1, "reporter": "Debian", "published": "2015-01-27T00:00:00", "title": "xen -- security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "debian", "bulletinFamily": "unix", "cvelist": ["CVE-2014-8866", "CVE-2014-8595", "CVE-2014-8867", "CVE-2014-8594", "CVE-2014-9030"], "modified": "2015-01-27T00:00:00", "id": "DSA-3140", "href": "http://www.debian.org/security/dsa-3140", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-06T01:29:53", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "xen-hypervisor-4.4-armhf_4.4.1-9+deb8u1_all.deb", "packageName": "xen-hypervisor-4.4-armhf", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "xen-utils-4.1_4.1.4-3+deb7u8_all.deb", "packageName": "xen-utils-4.1", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "xen-system-armhf_4.4.1-9+deb8u1_all.deb", "packageName": "xen-system-armhf", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "xen-hypervisor-4.4-amd64_4.4.1-9+deb8u1_all.deb", "packageName": "xen-hypervisor-4.4-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "xenstore-utils_4.1.4-3+deb7u8_all.deb", "packageName": "xenstore-utils", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "libxen-4.1_4.1.4-3+deb7u8_all.deb", "packageName": "libxen-4.1", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "xen_4.4.1-9+deb8u1_all.deb", "packageName": "xen", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "xen-utils-common_4.4.1-9+deb8u1_all.deb", "packageName": "xen-utils-common", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "xen-utils-4.4_4.4.1-9+deb8u1_all.deb", "packageName": "xen-utils-4.4", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "libxen-ocaml-dev_4.1.4-3+deb7u8_all.deb", "packageName": "libxen-ocaml-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "xen-system-i386_4.1.4-3+deb7u8_all.deb", "packageName": "xen-system-i386", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "xen-hypervisor-4.1-amd64_4.1.4-3+deb7u8_all.deb", "packageName": "xen-hypervisor-4.1-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "libxenstore3.0_4.4.1-9+deb8u1_all.deb", "packageName": "libxenstore3.0", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "xenstore-utils_4.4.1-9+deb8u1_all.deb", "packageName": "xenstore-utils", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "xen-utils-common_4.1.4-3+deb7u8_all.deb", "packageName": "xen-utils-common", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "xen-hypervisor-4.1-i386_4.1.4-3+deb7u8_all.deb", "packageName": "xen-hypervisor-4.1-i386", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "xen_4.1.4-3+deb7u8_all.deb", "packageName": "xen", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "libxen-ocaml_4.1.4-3+deb7u8_all.deb", "packageName": "libxen-ocaml", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "libxenstore3.0_4.1.4-3+deb7u8_all.deb", "packageName": "libxenstore3.0", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "libxen-dev_4.1.4-3+deb7u8_all.deb", "packageName": "libxen-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "xen-system-amd64_4.4.1-9+deb8u1_all.deb", "packageName": "xen-system-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "libxen-4.4_4.4.1-9+deb8u1_all.deb", "packageName": "libxen-4.4", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "xen-system-amd64_4.1.4-3+deb7u8_all.deb", "packageName": "xen-system-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u8", "arch": "all", "packageFilename": "xen-docs-4.1_4.1.4-3+deb7u8_all.deb", "packageName": "xen-docs-4.1", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.4.1-9+deb8u1", "arch": "all", "packageFilename": "libxen-dev_4.4.1-9+deb8u1_all.deb", "packageName": "libxen-dev", "operator": "lt"}], "description": "Multiple security issues have been found in the Xen virtualisation solution:\n\n * [CVE-2015-3209](<https://security-tracker.debian.org/tracker/CVE-2015-3209>)\n\nMatt Tait discovered a flaw in the way QEMU's AMD PCnet Ethernet emulation handles multi-TMD packets with a length above 4096 bytes. A privileged guest user in a guest with an AMD PCNet ethernet card enabled can potentially use this flaw to execute arbitrary code on the host with the privileges of the hosting QEMU process.\n\n * [CVE-2015-4103](<https://security-tracker.debian.org/tracker/CVE-2015-4103>)\n\nJan Beulich discovered that the QEMU Xen code does not properly restrict write access to the host MSI message data field, allowing a malicious guest to cause a denial of service.\n\n * [CVE-2015-4104](<https://security-tracker.debian.org/tracker/CVE-2015-4104>)\n\nJan Beulich discovered that the QEMU Xen code does not properly restrict access to PCI MSI mask bits, allowing a malicious guest to cause a denial of service.\n\n * [CVE-2015-4105](<https://security-tracker.debian.org/tracker/CVE-2015-4105>)\n\nJan Beulich reported that the QEMU Xen code enables logging for PCI MSI-X pass-through error messages, allowing a malicious guest to cause a denial of service.\n\n * [CVE-2015-4106](<https://security-tracker.debian.org/tracker/CVE-2015-4106>)\n\nJan Beulich discovered that the QEMU Xen code does not properly restrict write access to the PCI config space for certain PCI pass-through devices, allowing a malicious guest to cause a denial of service, obtain sensitive information or potentially execute arbitrary code.\n\n * [CVE-2015-4163](<https://security-tracker.debian.org/tracker/CVE-2015-4163>)\n\nJan Beulich discovered that a missing version check in the GNTTABOP_swap_grant_ref hypercall handler may result in denial of service. This only applies to Debian stable/jessie.\n\n * [CVE-2015-4164](<https://security-tracker.debian.org/tracker/CVE-2015-4164>)\n\nAndrew Cooper discovered a vulnerability in the iret hypercall handler, which may result in denial of service.\n\nFor the oldstable distribution (wheezy), these problems have been fixed in version 4.1.4-3+deb7u8. \n\nFor the stable distribution (jessie), these problems have been fixed in version 4.4.1-9+deb8u1. [CVE-2015-3209](<https://security-tracker.debian.org/tracker/CVE-2015-3209>), [CVE-2015-4103](<https://security-tracker.debian.org/tracker/CVE-2015-4103>), [CVE-2015-4104](<https://security-tracker.debian.org/tracker/CVE-2015-4104>), [CVE-2015-4105](<https://security-tracker.debian.org/tracker/CVE-2015-4105>) and [CVE-2015-4106](<https://security-tracker.debian.org/tracker/CVE-2015-4106>) don't affect the Xen package in stable jessie, it uses the standard qemu package and has already been fixed in DSA-3284-1.\n\nFor the unstable distribution (sid), these problems will be fixed soon.\n\nWe recommend that you upgrade your xen packages.", "edition": 2, "reporter": "Debian", "published": "2015-06-13T00:00:00", "title": "xen -- security update", "type": "debian", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4164", "CVE-2015-4163", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-13T00:00:00", "id": "DSA-3286", "href": "http://www.debian.org/security/dsa-3286", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-02T18:33:02", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-system-misc_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-system-misc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-system-mips_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-system-mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-kvm_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-kvm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-guest-agent_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-guest-agent", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-system-arm_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-system-arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-system_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-system", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-utils_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-utils", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-user-binfmt_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-user-binfmt", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-system-common_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-system-common", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-system-x86_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-system-x86", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-system-ppc_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-system-ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-user_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-user", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-user-static_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-user-static", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12+deb8u1", "packageFilename": "qemu-system-sparc_1:2.1+dfsg-12+deb8u1_all.deb", "arch": "all", "packageName": "qemu-system-sparc", "operator": "lt"}], "edition": 1, "description": "Several vulnerabilities were discovered in qemu, a fast processor emulator.\n\n * [CVE-2015-3209](<https://security-tracker.debian.org/tracker/CVE-2015-3209>)\n\nMatt Tait of Google's Project Zero security team discovered a flaw in the way QEMU's AMD PCnet Ethernet emulation handles multi-TMD packets with a length above 4096 bytes. A privileged guest user in a guest with an AMD PCNet ethernet card enabled can potentially use this flaw to execute arbitrary code on the host with the privileges of the hosting QEMU process.\n\n * [CVE-2015-4037](<https://security-tracker.debian.org/tracker/CVE-2015-4037>)\n\nKurt Seifried of Red Hat Product Security discovered that QEMU's user mode networking stack uses predictable temporary file names when the -smb option is used. An unprivileged user can use this flaw to cause a denial of service.\n\n * [CVE-2015-4103](<https://security-tracker.debian.org/tracker/CVE-2015-4103>)\n\nJan Beulich of SUSE discovered that the QEMU Xen code does not properly restrict write access to the host MSI message data field, allowing a malicious guest to cause a denial of service.\n\n * [CVE-2015-4104](<https://security-tracker.debian.org/tracker/CVE-2015-4104>)\n\nJan Beulich of SUSE discovered that the QEMU Xen code does not properly restrict access to PCI MSI mask bits, allowing a malicious guest to cause a denial of service.\n\n * [CVE-2015-4105](<https://security-tracker.debian.org/tracker/CVE-2015-4105>)\n\nJan Beulich of SUSE reported that the QEMU Xen code enables logging for PCI MSI-X pass-through error messages, allowing a malicious guest to cause a denial of service.\n\n * [CVE-2015-4106](<https://security-tracker.debian.org/tracker/CVE-2015-4106>)\n\nJan Beulich of SUSE discovered that the QEMU Xen code does not properly restrict write access to the PCI config space for certain PCI pass-through devices, allowing a malicious guest to cause a denial of service, obtain sensitive information or potentially execute arbitrary code.\n\nFor the oldstable distribution (wheezy), these problems have been fixed in version 1.1.2+dfsg-6a+deb7u8. Only [CVE-2015-3209](<https://security-tracker.debian.org/tracker/CVE-2015-3209>) and [CVE-2015-4037](<https://security-tracker.debian.org/tracker/CVE-2015-4037>) affect oldstable.\n\nFor the stable distribution (jessie), these problems have been fixed in version 1:2.1+dfsg-12+deb8u1.\n\nFor the unstable distribution (sid), these problems have been fixed in version 1:2.3+dfsg-6.\n\nWe recommend that you upgrade your qemu packages.", "reporter": "Debian", "published": "2015-06-13T00:00:00", "type": "debian", "title": "qemu -- security update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4037", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-13T00:00:00", "id": "DSA-3284", "href": "http://www.debian.org/security/dsa-3284", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-02T18:20:01", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "xen-docs-4.1_4.1.4-3+deb7u5_all.deb", "packageName": "xen-docs-4.1", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "xen-utils-4.1_4.1.4-3+deb7u5_all.deb", "packageName": "xen-utils-4.1", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "libxen-4.1_4.1.4-3+deb7u5_all.deb", "packageName": "libxen-4.1", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "xen-hypervisor-4.1-i386_4.1.4-3+deb7u5_all.deb", "packageName": "xen-hypervisor-4.1-i386", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "xen-hypervisor-4.1-amd64_4.1.4-3+deb7u5_all.deb", "packageName": "xen-hypervisor-4.1-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "xen-system-i386_4.1.4-3+deb7u5_all.deb", "packageName": "xen-system-i386", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "xen_4.1.4-3+deb7u5_all.deb", "packageName": "xen", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "xen-system-amd64_4.1.4-3+deb7u5_all.deb", "packageName": "xen-system-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "libxenstore3.0_4.1.4-3+deb7u5_all.deb", "packageName": "libxenstore3.0", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "libxen-ocaml_4.1.4-3+deb7u5_all.deb", "packageName": "libxen-ocaml", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "xenstore-utils_4.1.4-3+deb7u5_all.deb", "packageName": "xenstore-utils", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "libxen-ocaml-dev_4.1.4-3+deb7u5_all.deb", "packageName": "libxen-ocaml-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "libxen-dev_4.1.4-3+deb7u5_all.deb", "packageName": "libxen-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "7", "packageVersion": "4.1.4-3+deb7u5", "arch": "all", "packageFilename": "xen-utils-common_4.1.4-3+deb7u5_all.deb", "packageName": "xen-utils-common", "operator": "lt"}], "description": "Multiple security issues have been found in the Xen virtualisation solution:\n\n * [CVE-2015-2044](<https://security-tracker.debian.org/tracker/CVE-2015-2044>)\n\nInformation leak via x86 system device emulation.\n\n * [CVE-2015-2045](<https://security-tracker.debian.org/tracker/CVE-2015-2045>)\n\nInformation leak in the HYPERVISOR_xen_version() hypercall.\n\n * [CVE-2015-2151](<https://security-tracker.debian.org/tracker/CVE-2015-2151>)\n\nMissing input sanitising in the x86 emulator could result in information disclosure, denial of service or potentially privilege escalation.\n\nIn addition the Xen developers reported an unfixable limitation in the handling of non-standard PCI devices. Please refer to <http://xenbits.xen.org/xsa/advisory-124.html> for further information.\n\nFor the stable distribution (wheezy), these problems have been fixed in version 4.1.4-3+deb7u5.\n\nFor the unstable distribution (sid), these problems will be fixed soon.\n\nWe recommend that you upgrade your xen packages.", "edition": 1, "reporter": "Debian", "published": "2015-03-10T00:00:00", "title": "xen -- security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "debian", "bulletinFamily": "unix", "cvelist": ["CVE-2015-2044", "CVE-2015-2045", "CVE-2015-2151"], "modified": "2015-03-10T00:00:00", "id": "DSA-3181", "href": "http://www.debian.org/security/dsa-3181", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-02T18:22:53", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-system-arm_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-system-arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-utils_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-utils", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-user-static_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-user-static", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-system_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-system", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-guest-agent_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-guest-agent", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-user_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-user", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-system-x86_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-system-x86", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-system-sparc_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-system-sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-system-mips_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-system-mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-user-binfmt_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-user-binfmt", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-system-common_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-system-common", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-system-misc_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-system-misc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-kvm_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-kvm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "1:2.1+dfsg-12", "packageFilename": "qemu-system-ppc_1:2.1+dfsg-12_all.deb", "arch": "all", "packageName": "qemu-system-ppc", "operator": "lt"}], "edition": 1, "description": "Several vulnerabilities were discovered in the qemu virtualisation solution:\n\n * [CVE-2014-9718](<https://security-tracker.debian.org/tracker/CVE-2014-9718>)\n\nIt was discovered that the IDE controller emulation is susceptible to denial of service.\n\n * [CVE-2015-1779](<https://security-tracker.debian.org/tracker/CVE-2015-1779>)\n\nDaniel P. Berrange discovered a denial of service vulnerability in the VNC web socket decoder.\n\n * [CVE-2015-2756](<https://security-tracker.debian.org/tracker/CVE-2015-2756>)\n\nJan Beulich discovered that unmediated PCI command register could result in denial of service.\n\n * [CVE-2015-3456](<https://security-tracker.debian.org/tracker/CVE-2015-3456>)\n\nJason Geffner discovered a buffer overflow in the emulated floppy disk drive, resulting in the potential execution of arbitrary code.\n\nFor the oldstable distribution (wheezy), these problems have been fixed in version 1.1.2+dfsg-6a+deb7u7 of the qemu source package and in version 1.1.2+dfsg-6+deb7u7 of the qemu-kvm source package. Only [CVE-2015-3456](<https://security-tracker.debian.org/tracker/CVE-2015-3456>) affects oldstable.\n\nFor the stable distribution (jessie), these problems have been fixed in version 1:2.1+dfsg-12.\n\nFor the unstable distribution (sid), these problems will be fixed soon.\n\nWe recommend that you upgrade your qemu packages.", "reporter": "Debian", "published": "2015-05-13T00:00:00", "type": "debian", "title": "qemu -- security update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2014-9718", "CVE-2015-1779", "CVE-2015-3456", "CVE-2015-2756"], "modified": "2015-05-13T00:00:00", "id": "DSA-3259", "href": "http://www.debian.org/security/dsa-3259", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:07", "references": ["http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-5149", "https://bugs.gentoo.org/show_bug.cgi?id=478280", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-2756", "https://bugs.gentoo.org/show_bug.cgi?id=536220", "https://bugs.gentoo.org/show_bug.cgi?id=543304", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-2152", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3967", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-2045", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-8595", "https://bugs.gentoo.org/show_bug.cgi?id=532030", "https://bugs.gentoo.org/show_bug.cgi?id=530980", "https://bugs.gentoo.org/show_bug.cgi?id=512294", "https://bugs.gentoo.org/show_bug.cgi?id=530182", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3495", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0361", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-8866", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3968", "https://bugs.gentoo.org/show_bug.cgi?id=542266", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-5146", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-2751", "https://bugs.gentoo.org/show_bug.cgi?id=545144", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2212", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-8867", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-9030", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-9065", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-8594", "https://bugs.gentoo.org/show_bug.cgi?id=519800", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-2752", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-2044", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-9066", "https://bugs.gentoo.org/show_bug.cgi?id=482138"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "4.4.2-r1", "packageName": "app-emulation/xen", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}], "description": "### Background\n\nXen is a bare-metal hypervisor.\n\n### Description\n\nMultiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA local attacker could possibly cause a Denial of Service condition or obtain sensitive information. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll Xen 4.4 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=app-emulation/xen-4.4.2-r1\"\n \n\nAll Xen 4.2 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=app-emulation/xen-4.2.5-r8\"", "edition": 1, "reporter": "Gentoo Foundation", "published": "2015-04-11T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "type": "gentoo", "title": "Xen: Multiple vulnerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2014-5146", "CVE-2014-9065", "CVE-2013-3495", "CVE-2015-2044", "CVE-2014-8866", "CVE-2014-3967", "CVE-2014-8595", "CVE-2014-8867", "CVE-2015-0361", "CVE-2014-8594", "CVE-2015-2045", "CVE-2015-2752", "CVE-2014-3968", "CVE-2015-2751", "CVE-2014-9066", "CVE-2015-2756", "CVE-2014-5149", "CVE-2014-9030", "CVE-2015-2152", "CVE-2013-2212"], "modified": "2015-04-11T00:00:00", "id": "GLSA-201504-04", "href": "https://security.gentoo.org/glsa/201504-04", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "kaspersky": [{"lastseen": "2018-09-26T09:49:39", "references": [], "description": "### *CVSS*:\n7.1\n\n### *Detect date*:\n04/01/2015\n\n### *Severity*:\nHigh\n\n### *Description*:\nMultiple serious vulnerabilities have been found in Xen. Malicious users can exploit these vulnerabilities to cause denial of service or bypass security restrictions.\n\n### *Affected products*:\nXen 4.5 all versions and earlier\n\n### *Solution*:\nUpdate to the latest version \n[Get Xen](<http://xenserver.org/>)\n\n### *Impacts*:\nDoS \n\n### *Related products*:\n[Xen Server](<https://threats.kaspersky.com/en/product/Xen-Server/>)\n\n### *CVE-IDS*:\n[CVE-2015-2752](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2752>) \n[CVE-2015-2751](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2751>) \n[CVE-2015-1563](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1563>) \n[CVE-2015-2756](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2756>) \n[CVE-2015-2152](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2152>)", "edition": 14, "reporter": "Kaspersky Lab", "published": "2015-04-01T00:00:00", "title": "\r KLA10527Multiple vulnerabilities in different versions of Xen ", "type": "kaspersky", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "info", "cvelist": ["CVE-2015-2752", "CVE-2015-2751", "CVE-2015-2756", "CVE-2015-1563", "CVE-2015-2152"], "modified": "2018-09-17T00:00:00", "id": "KLA10527", "href": "https://threats.kaspersky.com/en/vulnerability/KLA10527", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "cve": [{"lastseen": "2017-09-08T10:27:07", "references": ["http://xenbits.xen.org/xsa/advisory-114.html", "http://www.securityfocus.com/bid/71544", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html", "https://security.gentoo.org/glsa/201504-04", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html", "http://www.openwall.com/lists/oss-security/2014/12/08/4"], "edition": 3, "description": "common/spinlock.c in Xen 4.4.x and earlier does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service (write denial or NMI watchdog timeout and host crash) via a large number of read requests, a different vulnerability to CVE-2014-9066.", "reporter": "NVD", "published": "2014-12-09T18:59:08", "title": "CVE-2014-9065", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2014-9065"], "scanner": [], "cpe": ["cpe:/o:xen:xen:4.4.1", "cpe:/o:novell:opensuse:13.2", "cpe:/o:novell:opensuse:13.1"], "modified": "2017-09-07T22:09:11", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9065", "id": "CVE-2014-9065", "cvss": {"score": 4.4, "vector": "AV:LOCAL/AC:MEDIUM/Au:SINGLE_INSTANCE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-09-08T10:27:07", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/98853", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html", "https://security.gentoo.org/glsa/201504-04", "http://www.securityfocus.com/bid/71207", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html", "http://www.debian.org/security/2015/dsa-3140", "http://xenbits.xen.org/xsa/advisory-113.html"], "edition": 3, "description": "The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leveraging control over an HVM guest and a crafted MMU_MACHPHYS_UPDATE.", "reporter": "NVD", "published": "2014-11-24T10:59:19", "title": "CVE-2014-9030", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2014-9030"], "scanner": [], "cpe": ["cpe:/o:xen:xen:4.1.1", "cpe:/o:xen:xen:4.4.0", "cpe:/o:xen:xen:3.4.4", "cpe:/o:xen:xen:4.0.3", "cpe:/o:xen:xen:4.3.0", "cpe:/o:xen:xen:4.0.4", "cpe:/o:xen:xen:3.4.0", "cpe:/o:xen:xen:4.1.5", "cpe:/o:xen:xen:4.2.0", "cpe:/o:xen:xen:4.1.4", "cpe:/o:xen:xen:3.2.0", "cpe:/o:xen:xen:4.0.1", "cpe:/o:xen:xen:4.2.3", "cpe:/o:xen:xen:3.2.3", "cpe:/o:xen:xen:4.2.1", "cpe:/o:xen:xen:4.0.2", "cpe:/o:xen:xen:4.1.0", "cpe:/o:xen:xen:4.4.1", "cpe:/o:xen:xen:4.1.6.1", "cpe:/o:xen:xen:4.2.2", "cpe:/o:xen:xen:3.3.0", "cpe:/o:xen:xen:4.1.3", "cpe:/o:xen:xen:4.0.0", "cpe:/o:xen:xen:3.4.1", "cpe:/o:novell:opensuse:13.2", "cpe:/o:xen:xen:4.3.1", "cpe:/o:xen:xen:3.3.1", "cpe:/o:xen:xen:3.3.2", "cpe:/o:debian:debian_linux:7.0", "cpe:/o:xen:xen:4.1.2", "cpe:/o:xen:xen:3.4.3", "cpe:/o:xen:xen:3.2.2", "cpe:/o:xen:xen:3.4.2", "cpe:/o:novell:opensuse:13.1", "cpe:/o:xen:xen:3.2.1"], "modified": "2017-09-07T21:29:32", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9030", "id": "CVE-2014-9030", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-11-15T11:55:36", "references": ["http://www.securityfocus.com/bid/71332", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html", "https://security.gentoo.org/glsa/201504-04", "http://support.citrix.com/article/CTX200288", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html", "http://support.citrix.com/article/CTX201794", "http://www.debian.org/security/2015/dsa-3140", "http://xenbits.xen.org/xsa/advisory-111.html"], "edition": 4, "description": "The compatibility mode hypercall argument translation in Xen 3.3.x through 4.4.x, when running on a 64-bit hypervisor, allows local 32-bit HVM guests to cause a denial of service (host crash) via vectors involving altering the high halves of registers while in 64-bit mode.", "reporter": "NVD", "published": "2014-12-01T10:59:08", "title": "CVE-2014-8866", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2014-8866"], "scanner": [], "cpe": ["cpe:/o:xen:xen:4.1.1", "cpe:/o:xen:xen:4.4.0", "cpe:/o:xen:xen:3.4.4", "cpe:/o:xen:xen:4.0.3", "cpe:/o:xen:xen:4.3.0", "cpe:/o:xen:xen:4.0.4", "cpe:/o:xen:xen:3.4.0", "cpe:/o:xen:xen:4.1.5", "cpe:/o:xen:xen:4.2.0", "cpe:/o:xen:xen:4.4.0:rc1", "cpe:/o:xen:xen:4.1.4", "cpe:/o:xen:xen:4.0.1", "cpe:/o:xen:xen:4.2.3", "cpe:/o:xen:xen:4.2.1", "cpe:/o:xen:xen:4.0.2", "cpe:/o:xen:xen:4.1.0", "cpe:/o:xen:xen:4.1.6.1", "cpe:/o:xen:xen:4.2.2", "cpe:/o:xen:xen:3.3.0", "cpe:/o:xen:xen:4.1.3", "cpe:/o:xen:xen:4.0.0", "cpe:/o:xen:xen:3.4.1", "cpe:/o:novell:opensuse:13.2", "cpe:/o:xen:xen:4.3.1", "cpe:/o:xen:xen:3.3.1", "cpe:/o:xen:xen:3.3.2", "cpe:/o:debian:debian_linux:7.0", "cpe:/o:xen:xen:4.1.2", "cpe:/o:xen:xen:3.4.3", "cpe:/o:xen:xen:3.4.2", "cpe:/o:novell:opensuse:13.1"], "modified": "2017-11-14T21:29:05", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8866", "id": "CVE-2014-8866", "cvss": {"score": 4.7, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-11-15T11:55:36", "references": ["http://www.securityfocus.com/bid/71151", "https://exchange.xforce.ibmcloud.com/vulnerabilities/98768", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html", "http://secunia.com/advisories/62537", "https://security.gentoo.org/glsa/201504-04", "http://xenbits.xen.org/xsa/advisory-110.html", "http://support.citrix.com/article/CTX200288", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html", "http://support.citrix.com/article/CTX201794", "http://www.debian.org/security/2015/dsa-3140"], "edition": 4, "description": "arch/x86/x86_emulate/x86_emulate.c in Xen 3.2.1 through 4.4.x does not properly check privileges, which allows local HVM guest users to gain privileges or cause a denial of service (crash) via a crafted (1) CALL, (2) JMP, (3) RETF, (4) LCALL, (5) LJMP, or (6) LRET far branch instruction.", "reporter": "NVD", "published": "2014-11-19T13:59:11", "title": "CVE-2014-8595", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2014-8595"], "scanner": [], "cpe": ["cpe:/o:xen:xen:4.1.1", "cpe:/o:xen:xen:4.4.0", "cpe:/o:xen:xen:3.4.4", "cpe:/o:xen:xen:4.0.3", "cpe:/o:xen:xen:4.3.0", "cpe:/o:xen:xen:4.0.4", "cpe:/o:xen:xen:3.4.0", "cpe:/o:xen:xen:4.1.5", "cpe:/o:xen:xen:4.2.0", "cpe:/o:xen:xen:4.1.4", "cpe:/o:xen:xen:4.0.1", "cpe:/o:xen:xen:4.2.3", "cpe:/o:xen:xen:3.2.3", "cpe:/o:xen:xen:4.2.1", "cpe:/o:xen:xen:4.0.2", "cpe:/o:xen:xen:4.1.0", "cpe:/o:xen:xen:4.1.6.1", "cpe:/o:xen:xen:4.2.2", "cpe:/o:xen:xen:3.3.0", "cpe:/o:xen:xen:4.1.3", "cpe:/o:xen:xen:4.0.0", "cpe:/o:xen:xen:3.4.1", "cpe:/o:novell:opensuse:13.2", "cpe:/o:xen:xen:4.3.1", "cpe:/o:xen:xen:3.3.1", "cpe:/o:xen:xen:3.3.2", "cpe:/o:debian:debian_linux:7.0", "cpe:/o:xen:xen:4.1.2", "cpe:/o:xen:xen:3.4.3", "cpe:/o:xen:xen:3.2.2", "cpe:/o:xen:xen:3.4.2", "cpe:/o:novell:opensuse:13.1", "cpe:/o:xen:xen:3.2.1"], "modified": "2017-11-14T21:29:05", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8595", "id": "CVE-2014-8595", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-11-15T11:55:48", "references": ["http://www.securitytracker.com/id/1031998", "http://www.securityfocus.com/bid/72577", "https://support.citrix.com/article/CTX206006", "https://security.gentoo.org/glsa/201504-04", "http://www.ubuntu.com/usn/USN-2608-1", "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00014.html", "http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154579.html", "http://support.citrix.com/article/CTX201145", "http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155198.html", "http://lists.nongnu.org/archive/html/qemu-devel/2015-03/msg06179.html", "http://www.debian.org/security/2015/dsa-3259", "http://xenbits.xen.org/xsa/advisory-126.html", "http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154574.html"], "edition": 3, "description": "QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1) memory or (2) I/O decoding for a PCI Express device and then accessing the device, which triggers an Unsupported Request (UR) response.", "reporter": "NVD", "published": "2015-04-01T10:59:08", "title": "CVE-2015-2756", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2015-2756"], "scanner": [], "cpe": ["cpe:/o:xen:xen:4.3.0", "cpe:/o:canonical:ubuntu_linux:15.04", "cpe:/o:canonical:ubuntu_linux:14.04::~~lts~~~", "cpe:/o:debian:debian_linux:8.0", "cpe:/o:fedoraproject:fedora:21", "cpe:/o:canonical:ubuntu_linux:12.04::~~lts~~~", "cpe:/o:xen:xen:4.3.2", "cpe:/o:xen:xen:4.5.0", "cpe:/o:canonical:ubuntu_linux:14.10", "cpe:/o:fedoraproject:fedora:20", "cpe:/o:xen:xen:4.4.1:-", "cpe:/o:xen:xen:4.3.1", "cpe:/o:xen:xen:4.4.0:-", "cpe:/o:debian:debian_linux:7.0"], "modified": "2017-11-14T21:29:06", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2756", "id": "CVE-2015-2756", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-09-08T10:27:06", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/98767", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html", "https://security.gentoo.org/glsa/201504-04", "http://xenbits.xen.org/xsa/advisory-109.html", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html", "http://www.debian.org/security/2015/dsa-3140", "http://www.securityfocus.com/bid/71149"], "edition": 3, "description": "The do_mmu_update function in arch/x86/mm.c in Xen 4.x through 4.4.x does not properly restrict updates to only PV page tables, which allows remote PV guests to cause a denial of service (NULL pointer dereference) by leveraging hardware emulation services for HVM guests using Hardware Assisted Paging (HAP).", "reporter": "NVD", "published": "2014-11-19T13:59:10", "title": "CVE-2014-8594", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2014-8594"], "scanner": [], "cpe": ["cpe:/o:xen:xen:4.1.1", "cpe:/o:xen:xen:4.0.3", "cpe:/o:xen:xen:4.3.0", "cpe:/o:xen:xen:4.0.4", "cpe:/o:xen:xen:4.1.5", "cpe:/o:xen:xen:4.2.0", "cpe:/o:xen:xen:4.1.4", "cpe:/o:xen:xen:4.0.1", "cpe:/o:xen:xen:4.2.3", "cpe:/o:xen:xen:4.2.1", "cpe:/o:xen:xen:4.0.2", "cpe:/o:xen:xen:4.1.0", "cpe:/o:xen:xen:4.1.6.1", "cpe:/o:xen:xen:4.2.2", "cpe:/o:xen:xen:4.1.3", "cpe:/o:xen:xen:4.0.0", "cpe:/o:novell:opensuse:13.2", "cpe:/o:xen:xen:4.3.1", "cpe:/o:debian:debian_linux:7.0", "cpe:/o:xen:xen:4.1.2", "cpe:/o:novell:opensuse:13.1"], "modified": "2017-09-07T21:29:25", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8594", "id": "CVE-2014-8594", "cvss": {"score": 5.4, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-11-15T11:55:51", "references": ["http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00030.html", "http://xenbits.xen.org/xsa/advisory-131.html", "http://www.debian.org/security/2015/dsa-3286", "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160171.html", "https://support.citrix.com/article/CTX206006", "http://www.ubuntu.com/usn/USN-2630-1", "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00007.html", "http://support.citrix.com/article/CTX201145", "http://www.debian.org/security/2015/dsa-3284", "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160154.html", "http://www.securitytracker.com/id/1032467", "http://www.securityfocus.com/bid/74949", "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160685.html", "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00004.html", "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00029.html", "https://security.gentoo.org/glsa/201604-03"], "edition": 5, "description": "QEMU does not properly restrict write access to the PCI config space for certain PCI pass-through devices, which might allow local x86 HVM guests to gain privileges, cause a denial of service (host crash), obtain sensitive information, or possibly have other unspecified impact via unknown vectors.", "reporter": "NVD", "published": "2015-06-03T16:59:09", "title": "CVE-2015-4106", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2015-4106"], "scanner": [], "cpe": ["cpe:/a:qemu:qemu:-"], "modified": "2017-11-14T21:29:07", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4106", "id": "CVE-2015-4106", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-09-22T10:42:13", "references": ["http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00042.html", "http://xenbits.xen.org/xsa/advisory-137.html", "http://www.securityfocus.com/bid/75573", "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00041.html", "http://www.debian.org/security/2015/dsa-3414", "https://security.gentoo.org/glsa/201604-03", "http://www.securitytracker.com/id/1032973"], "edition": 4, "description": "Stack-based buffer overflow in the xl command line utility in Xen 4.1.x through 4.5.x allows local guest administrators to gain privileges via a long configuration argument.", "reporter": "NVD", "published": "2015-07-16T10:59:01", "title": "CVE-2015-3259", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2015-3259"], "scanner": [], "cpe": ["cpe:/o:xen:xen:4.1.1", "cpe:/o:xen:xen:4.4.0", "cpe:/o:xen:xen:4.3.0", "cpe:/o:xen:xen:4.1.5", "cpe:/o:xen:xen:4.2.0", "cpe:/o:xen:xen:4.4.0:rc1", "cpe:/o:xen:xen:4.1.4", "cpe:/o:xen:xen:4.2.3", "cpe:/o:xen:xen:4.2.1", "cpe:/o:xen:xen:4.1.0", "cpe:/o:xen:xen:4.5.0", "cpe:/o:xen:xen:4.4.1", "cpe:/o:xen:xen:4.1.6.1", "cpe:/o:xen:xen:4.2.2", "cpe:/o:xen:xen:4.4.2", "cpe:/o:xen:xen:4.3.4", "cpe:/o:xen:xen:4.1.3", "cpe:/o:xen:xen:4.3.1", "cpe:/o:xen:xen:4.4.0:-", "cpe:/o:xen:xen:4.1.2"], "modified": "2017-09-21T21:29:12", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3259", "id": "CVE-2015-3259", "cvss": {"score": 6.8, "vector": "AV:LOCAL/AC:LOW/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-11-15T11:55:36", "references": ["http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705", "http://www.securityfocus.com/bid/71331", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html", "https://security.gentoo.org/glsa/201504-04", "http://xenbits.xenproject.org/xsa/advisory-112.html", "http://support.citrix.com/article/CTX200288", "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html", "http://support.citrix.com/article/CTX201794", "http://www.debian.org/security/2015/dsa-3140", "http://rhn.redhat.com/errata/RHSA-2015-0783.html"], "edition": 3, "description": "The acceleration support for the \"REP MOVS\" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking for memory mapped I/O (MMIO) emulated in the hypervisor, which allows local HVM guests to cause a denial of service (host crash) via unspecified vectors.", "reporter": "NVD", "published": "2014-12-01T10:59:09", "title": "CVE-2014-8867", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2014-8867"], "scanner": [], "cpe": ["cpe:/o:xen:xen:4.4.0", "cpe:/o:redhat:enterprise_linux_desktop:5.0", "cpe:/o:redhat:enterprise_linux:5.0", "cpe:/o:xen:xen:3.2.0", "cpe:/o:xen:xen:3.2.3", "cpe:/o:xen:xen:4.4.1", "cpe:/o:novell:opensuse:13.2", "cpe:/o:debian:debian_linux:7.0", "cpe:/o:xen:xen:3.2.2", "cpe:/o:novell:opensuse:13.1", "cpe:/o:xen:xen:3.2.1"], "modified": "2017-11-14T21:29:05", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8867", "id": "CVE-2014-8867", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-11-15T11:55:51", "references": ["http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00030.html", "http://www.debian.org/security/2015/dsa-3286", "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160171.html", "https://support.citrix.com/article/CTX206006", "http://www.ubuntu.com/usn/USN-2630-1", "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00007.html", "http://www.securityfocus.com/bid/74947", "http://support.citrix.com/article/CTX201145", "http://www.debian.org/security/2015/dsa-3284", "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160154.html", "http://www.securitytracker.com/id/1032456", "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160685.html", "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00004.html", "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00029.html", "http://xenbits.xen.org/xsa/advisory-128.html", "https://security.gentoo.org/glsa/201604-03"], "edition": 5, "description": "Xen 3.3.x through 4.5.x does not properly restrict write access to the host MSI message data field, which allows local x86 HVM guest administrators to cause a denial of service (host interrupt handling confusion) via vectors related to qemu and accessing spanning multiple fields.", "reporter": "NVD", "published": "2015-06-03T16:59:06", "title": "CVE-2015-4103", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2015-4103"], "scanner": [], "cpe": ["cpe:/o:xen:xen:4.1.1", "cpe:/o:xen:xen:4.4.0", "cpe:/o:xen:xen:3.4.4", "cpe:/o:xen:xen:4.0.3", "cpe:/o:xen:xen:4.3.0", "cpe:/o:xen:xen:4.0.4", "cpe:/o:xen:xen:3.4.0", "cpe:/o:xen:xen:4.1.5", "cpe:/o:xen:xen:4.2.0", "cpe:/o:xen:xen:4.1.4", "cpe:/o:xen:xen:4.3.2", "cpe:/o:xen:xen:4.0.1", "cpe:/o:xen:xen:4.2.3", "cpe:/o:xen:xen:4.2.1", "cpe:/o:xen:xen:4.0.2", "cpe:/o:xen:xen:4.1.0", "cpe:/o:xen:xen:4.5.0", "cpe:/o:xen:xen:4.1.6.1", "cpe:/o:xen:xen:4.2.2", "cpe:/o:xen:xen:3.3.0", "cpe:/o:xen:xen:4.3.4", "cpe:/o:xen:xen:4.1.3", "cpe:/o:xen:xen:4.4.1:-", "cpe:/o:xen:xen:3.4.1", "cpe:/o:xen:xen:4.3.1", "cpe:/o:xen:xen:3.3.1", "cpe:/o:xen:xen:3.3.2", "cpe:/o:xen:xen:4.1.2", "cpe:/o:xen:xen:3.4.3", "cpe:/o:xen:xen:3.4.2"], "modified": "2017-11-14T21:29:07", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4103", "id": "CVE-2015-4103", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:10:01", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2015-4106", "https://people.canonical.com/~ubuntu-security/cve/CVE-2015-4105", "https://people.canonical.com/~ubuntu-security/cve/CVE-2015-4037", "https://people.canonical.com/~ubuntu-security/cve/CVE-2015-3209", "https://people.canonical.com/~ubuntu-security/cve/CVE-2015-4104", "https://people.canonical.com/~ubuntu-security/cve/CVE-2015-4103"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-sparc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.7", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-arm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-aarch64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-mips", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.7", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "1.0+noroms-0ubuntu14.23", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-kvm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-ppc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.7", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-misc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.7", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-sparc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.7", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-x86", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.7", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-ppc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-x86", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-mips", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-misc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.7", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-aarch64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-x86", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-arm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-ppc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-arm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-aarch64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-sparc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.7", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-mips", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-misc", "operator": "lt"}], "description": "Matt Tait discovered that QEMU incorrectly handled the virtual PCNET driver. A malicious guest could use this issue to cause a denial of service, or possibly execute arbitrary code on the host as the user running the QEMU process. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. (CVE-2015-3209)\n\nKurt Seifried discovered that QEMU incorrectly handled certain temporary files. A local attacker could use this issue to cause a denial of service. (CVE-2015-4037)\n\nJan Beulich discovered that the QEMU Xen code incorrectly restricted write access to the host MSI message data field. A malicious guest could use this issue to cause a denial of service. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4103)\n\nJan Beulich discovered that the QEMU Xen code incorrectly restricted access to the PCI MSI mask bits. A malicious guest could use this issue to cause a denial of service. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4104)\n\nJan Beulich discovered that the QEMU Xen code incorrectly handled MSI-X error messages. A malicious guest could use this issue to cause a denial of service. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4105)\n\nJan Beulich discovered that the QEMU Xen code incorrectly restricted write access to the PCI config space. A malicious guest could use this issue to cause a denial of service, obtain sensitive information, or possibly execute arbitrary code. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4106)", "edition": 3, "reporter": "Ubuntu", "published": "2015-06-10T00:00:00", "title": "QEMU vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-4105", "CVE-2015-4103", "CVE-2015-4037", "CVE-2015-4104", "CVE-2015-3209", "CVE-2015-4106"], "modified": "2015-06-10T00:00:00", "id": "USN-2630-1", "href": "https://usn.ubuntu.com/2630-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:09:43", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2015-2756", "https://people.canonical.com/~ubuntu-security/cve/CVE-2015-3456", "https://people.canonical.com/~ubuntu-security/cve/CVE-2015-1779"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-ppc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.11", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-x86", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.11", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-aarch64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-misc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-arm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-misc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.11", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-mips", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-aarch64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "1.0+noroms-0ubuntu14.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-kvm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-x86", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-sparc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-mips", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-mips", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-arm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-ppc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-x86", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "2.1+dfsg-4ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-aarch64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.11", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-arm", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.11", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-misc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.11", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-ppc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.11", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "1:2.2+dfsg-5expubuntu9.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-sparc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "2.0.0+dfsg-2ubuntu1.11", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-system-sparc", "operator": "lt"}], "description": "Jason Geffner discovered that QEMU incorrectly handled the virtual floppy driver. This issue is known as VENOM. A malicious guest could use this issue to cause a denial of service, or possibly execute arbitrary code on the host as the user running the QEMU process. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. (CVE-2015-3456)\n\nDaniel P. Berrange discovered that QEMU incorrectly handled VNC websockets. A remote attacker could use this issue to cause QEMU to consume memory, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-1779)\n\nJan Beulich discovered that QEMU, when used with Xen, didn\u2019t properly restrict access to PCI command registers. A malicious guest could use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 14.10. (CVE-2015-2756)", "edition": 3, "reporter": "Ubuntu", "published": "2015-05-13T00:00:00", "title": "QEMU vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-1779", "CVE-2015-3456", "CVE-2015-2756"], "modified": "2015-05-13T00:00:00", "id": "USN-2608-1", "href": "https://usn.ubuntu.com/2608-1/", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "f5": [{"lastseen": "2017-12-20T20:16:42", "references": [], "description": "", "edition": 1, "reporter": "f5", "published": "2015-05-13T21:14:00", "type": "f5", "title": "QEMU vulnerability CVE-2015-3456", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "affectedSoftware": [{"name": "BIG-IP Link Controller", "version": "11.6.0", "operator": "le"}, {"name": "BIG-IP Edge Gateway", "version": "11.3.0", "operator": "le"}, {"name": "BIG-IP GTM", "version": "11.6.0", "operator": "le"}, {"name": "BIG-IP PEM", "version": "11.6.0", "operator": "le"}, {"name": "BIG-IP Analytics", "version": "11.6.0", "operator": "le"}, {"name": "BIG-IP WebAccelerator", "version": "11.3.0", "operator": "le"}, {"name": "BIG-IP ASM", "version": "11.6.0", "operator": "le"}, {"name": "BIG-IP PSM", "version": "11.4.1", "operator": "le"}, {"name": "BIG-IP LTM", "version": "11.6.0", "operator": "le"}, {"name": "BIG-IP AAM", "version": "11.6.0", "operator": "le"}, {"name": "BIG-IP AFM", "version": "11.6.0", "operator": "le"}, {"name": "BIG-IP APM", "version": "11.6.0", "operator": "le"}, {"name": "BIG-IP WOM", "version": "11.3.0", "operator": "le"}], "bulletinFamily": "software", "cvelist": ["CVE-2015-3456"], "modified": "2016-01-09T02:11:00", "href": "https://support.f5.com/csp/article/K16620", "id": "F5:K16620", "cvss": {"score": 7.7, "vector": "AV:ADJACENT_NETWORK/AC:LOW/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-03-19T09:01:59", "references": ["https://support.f5.com/kb/en-us/solutions/public/14000/000/sol14088.html", "https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html", "https://support.f5.com/kb/en-us/solutions/public/4000/900/sol4918.html", "https://support.f5.com/kb/en-us/solutions/public/9000/500/sol9502.html", "https://support.f5.com/kb/en-us/solutions/public/13000/100/sol13123", "https://support.f5.com/kb/en-us/solutions/public/0000/100/sol167.html", "https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html"], "edition": 1, "description": "1 vCMP is not available on BIG-IP versions prior to 11.0.0. \n\n\nRecommended Action\n\nIf the previous table lists a version in the **Versions known to be not vulnerable column**, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version in the column, then no upgrade candidate currently exists.\n\nF5 responds to vulnerabilities in accordance with the Severity values published in the previous table. The Severity values and other security vulnerability parameters are defined in SOL4602: Overview of the F5 security vulnerability response policy.\n\nSupplemental Information\n\n * SOL14088: vCMP host and supported guest version matrix\n * SOL9970: Subscribing to email notifications regarding F5 products\n * SOL9957: Creating a custom RSS feed to view new and updated documents\n * SOL4918: Overview of the F5 critical issue hotfix policy\n * SOL167: Downloading software and firmware from F5\n * SOL13123: Managing BIG-IP product hotfixes (11.x - 12.x)\n * SOL9502: BIG-IP hotfix matrix\n", "reporter": "f5", "published": "2015-05-13T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "SOL16620 - QEMU vulnerability CVE-2015-3456", "type": "f5", "bulletinFamily": "software", "cvelist": ["CVE-2015-3456"], "modified": "2015-10-02T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/16000/600/sol16620.html", "id": "SOL16620", "cvss": {"score": 7.7, "vector": "AV:ADJACENT_NETWORK/AC:LOW/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "freebsd": [{"lastseen": "2018-08-31T01:14:39", "references": ["http://xenbits.xen.org/xsa/advisory-135.html"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "0.11.1_20", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "0.11.1_20", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-devel", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "2.3.50.g20150618_1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "qemu-sbruno", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.5.0_6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "xen-tools", "operator": "lt"}], "description": "\nThe QEMU security team reports:\n\nA guest which has access to an emulated PCNET network\n\t device (e.g. with \"model=pcnet\" in their VIF configuration)\n\t can exploit this vulnerability to take over the qemu\n\t process elevating its privilege to that of the qemu\n\t process.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2015-04-10T00:00:00", "title": "qemu -- Heap overflow in QEMU PCNET controller, allowing guest to host escape (CVE-2015-3209)", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-3209"], "modified": "2015-07-11T00:00:00", "id": "ACD5D037-1C33-11E5-BE9C-6805CA1D3BB1", "href": "https://vuxml.freebsd.org/freebsd/acd5d037-1c33-11e5-be9c-6805ca1d3bb1.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "huawei": [{"lastseen": "2016-09-05T13:35:27", "references": [], "edition": 1, "description": "This security advisory (SA) describes the impact of Xen vulnerabilities discovered in website.\nThis vulnerability is referenced in this document as follows:\nXSA-120: Non-maskable interrupts triggerable by guests. In the event that the platform surfaces aforementioned UR responses as Non-Maskable Interrupts, and either the OS is configured to treat NMIs as fatal or (e.g. via ACPI's APEI) the platform tells the OS to treat these errors as fatal, the host would crash, leading to a Denial of Service.( HWPSIRT-2015-03019)\nThis Vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2015-2150.\nXSA-123: Hypervisor memory corruption due to x86 emulator flaw. A malicious guest might be able to read sensitive data relating to other guests, or to cause denial of service on the host. Arbitrary code execution, and therefore privilege escalation, cannot be excluded. (HWPSIRT-2015-03020)\nThis Vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2015-2151.\nXSA-121: Information leak via internal x86 system device emulation. A malicious HVM guest might be able to read sensitive data relating to other guests. (HWPSIRT-2015-03021)\nThis Vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2015-2044.\nXSA-122: Information leak through version information hypercall. A malicious guest might be able to read sensitive data relating to other guests. \n\u00a0This Vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2015-2045.", "reporter": "Huawei Technologies", "published": "2015-04-10T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "type": "huawei", "title": "Security Advisory - Xen Vulnerabilities on Huawei FusionSphere products", "bulletinFamily": "software", "affectedSoftware": [{"name": "SingleCLOUD", "version": "V100R002C00 \n V100R002C01\n V100R002C85", "operator": "eq"}, {"name": "GalaxEngine", "version": "V100R002C02", "operator": "eq"}, {"name": "FusionCompute", "version": "V100R005C00", "operator": "eq"}, {"name": "FusionCompute", "version": "V100R003C00\n V100R003C10", "operator": "eq"}], "cvelist": ["CVE-2015-2044", "CVE-2015-2045", "CVE-2015-2151", "CVE-2014-2045", "CVE-2015-2150", "CVE-2014-2151"], "modified": "2015-04-10T00:00:00", "id": "HUAWEI-SA-20150327-01-XEN", "href": "http://www.huawei.com/en/psirt/security-advisories/2015/hw-423503", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "xen": [{"lastseen": "2016-09-04T11:24:08", "references": [], "description": "#### ISSUE DESCRIPTION\nMMU update operations targeting page tables are intended to be used on PV guests only. The lack of a respective check made it possible for such operations to access certain function pointers which remain NULL when the target guest is using Hardware Assisted Paging (HAP).\n#### IMPACT\nMalicious or buggy stub domain kernels or tool stacks otherwise living outside of Domain0 can mount a denial of service or privilege escalation attack which, if successful, can affect the whole system.\nOnly PV domains with privilege over other guests can exploit this vulnerability; and only when those other guests are HVM using HAP, or PVH. The vulnerability is therefore exposed to PV domains providing hardware emulation services to HVM guests.\n#### VULNERABLE SYSTEMS\nXen 4.0 and onward are vulnerable.\nOnly x86 systems are vulnerable. ARM systems are not vulnerable.\nThe vulnerability is only exposed to PV service domains for HVM or PVH guests which have privilege over the guest. In a usual configuration that means only device model emulators (qemu-dm).\nIn the case of HVM guests whose device model is running in an unrestricted dom0 process, qemu-dm already has the ability to cause problems for the whole system. So in that case the vulnerability is not applicable.\nThe situation is more subtle for an HVM guest with a stub qemu-dm. That is, where the device model runs in a separate domain (in the case of xl, as requested by "device_model_stubdomain_override=1" in the xl domain configuration file). The same applies with a qemu-dm in a dom0 process subjected to some kind kernel-based process privilege limitation (eg the chroot technique as found in some versions of XCP/XenServer).\nIn those latter situations this issue means that the extra isolation does not provide as good a defence as intended. That is the essence of this vulnerability.\nHowever, the security is still better than with a qemu-dm running as an unrestricted dom0 process. Therefore users with these configurations should not switch to an unrestricted dom0 qemu-dm.\nFinally, in a radically disaggregated system: where the HVM or PVH service domain software (probably, the device model domain image in the HVM case) is not always supplied by the host administrator, a malicious service domain administrator can exercise this vulnerability.\n", "edition": 1, "reporter": "Xen Project", "published": "2014-11-18T12:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Insufficient restrictions on certain MMU update hypercalls", "type": "xen", "bulletinFamily": "software", "affectedSoftware": [{"name": "Xen", "version": "4.0", "operator": "ge"}], "cvelist": ["CVE-2014-8594"], "modified": "2015-01-20T18:14:00", "id": "XSA-109", "href": "http://xenbits.xen.org/xsa/advisory-109.html", "cvss": {"score": 5.4, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:24:08", "references": [], "edition": 1, "description": "#### ISSUE DESCRIPTION\nAn error handling path in the processing of MMU_MACHPHYS_UPDATE failed to drop a page reference which was acquired in an earlier processing step.\n#### IMPACT\nMalicious or buggy stub domain kernels or tool stacks otherwise living outside of Domain0 can mount a denial of service attack which, if successful, can affect the whole system.\nOnly domains controlling HVM guests can exploit this vulnerability. (This includes domains providing hardware emulation services to HVM guests.)\n#### VULNERABLE SYSTEMS\nXen versions from at least 3.2.x onwards are vulnerable on x86 systems. Older versions have not been inspected. ARM systems are not vulnerable.\nThis vulnerability is only applicable to Xen systems using stub domains or other forms of disaggregation of control domains for HVM guests.\n", "reporter": "Xen Project", "published": "2014-11-20T16:26:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "xen", "title": "Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling", "bulletinFamily": "software", "affectedSoftware": [{"name": "Xen", "version": "3.2.x", "operator": "ge"}], "cvelist": ["CVE-2014-9030"], "modified": "2014-11-21T12:25:00", "id": "XSA-113", "href": "http://xenbits.xen.org/xsa/advisory-113.html", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:24:07", "references": [], "edition": 1, "description": "#### ISSUE DESCRIPTION\nThe emulation of far branch instructions (CALL, JMP, and RETF in Intel assembly syntax, LCALL, LJMP, and LRET in AT&T assembly syntax) incompletely performs privilege checks.\nHowever these instructions are not usually handled by the emulator. Exceptions to this are\n- when a memory operand lives in (emulated or passed through) memory mapped IO space,\n- in the case of guests running in 32-bit PAE mode, when such an instruction is (in execution flow) within four instructions of one doing a page table update,\n- when an Invalid Opcode exception gets raised by a guest instruction, and the guest then (likely maliciously) alters the instruction to become one of the affected ones,\n- when the guest is in real mode (in which case there are no privilege checks anyway).\n#### IMPACT\nMalicious HVM guest user mode code may be able to elevate its privileges to guest supervisor mode, or to crash the guest.\n#### VULNERABLE SYSTEMS\nXen 3.2.1 and onward are vulnerable on x86 systems.\nARM systems are not vulnerable.\nOnly user processes in x86 HVM guests can take advantage of this vulnerability.\n", "reporter": "Xen Project", "published": "2014-11-18T12:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "type": "xen", "title": "Missing privilege level checks in x86 emulation of far branches", "bulletinFamily": "software", "affectedSoftware": [{"name": "Xen", "version": "3.2.1", "operator": "ge"}], "cvelist": ["CVE-2014-8595"], "modified": "2014-11-18T12:23:00", "id": "XSA-110", "href": "http://xenbits.xen.org/xsa/advisory-110.html", "cvss": {"score": 1.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2016-09-04T11:24:09", "references": [], "edition": 1, "description": "#### ISSUE DESCRIPTION\nAcceleration support for the "REP MOVS" instruction, when the first iteration accesses memory mapped I/O emulated internally in the hypervisor, incorrectly assumes that the whole range accessed is handled by the same hypervisor sub-component.\n#### IMPACT\nA buggy or malicious HVM guest can crash the host.\n#### VULNERABLE SYSTEMS\nXen versions from at least 3.2.x onwards are vulnerable on x86 systems. Older versions have not been inspected. ARM systems are not vulnerable.\n", "reporter": "Xen Project", "published": "2014-11-27T11:25:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "xen", "title": "Insufficient bounding of \"REP MOVS\" to MMIO emulated inside the hypervisor", "bulletinFamily": "software", "affectedSoftware": [{"name": "Xen", "version": "3.2.x", "operator": "ge"}], "cvelist": ["CVE-2014-8867"], "modified": "2014-11-27T11:25:00", "id": "XSA-112", "href": "http://xenbits.xen.org/xsa/advisory-112.html", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:24:07", "references": [], "edition": 1, "description": "#### ISSUE DESCRIPTION\nThe mask bits optionally available in the PCI MSI capability structure are used by the hypervisor to occasionally suppress interrupt delivery. Unprivileged guests were, however, nevertheless allowed direct control of these bits.\n#### IMPACT\nInterrupts may be observed by Xen at unexpected times, which may lead to a host crash and therefore a Denial of Service.\n#### VULNERABLE SYSTEMS\nXen versions 3.3 and onwards are vulnerable due to supporting PCI pass-through.\nOnly x86 systems are vulnerable. ARM systems are not vulnerable.\nOnly HVM guests with their device model run in Dom0 can take advantage of this vulnerability.\nOnly HVM guests which have been granted access to physical PCI devices (`PCI passthrough') can take advantage of this vulnerability.\nFurthermore, the vulnerability is only applicable when the passed-through PCI devices are MSI-capable. (Most modern devices are.)\n", "reporter": "Xen Project", "published": "2015-06-02T12:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "xen", "title": "PCI MSI mask bits inadvertently exposed to guests", "bulletinFamily": "software", "affectedSoftware": [{"name": "Xen", "version": "3.3", "operator": "ge"}], "cvelist": ["CVE-2015-4104"], "modified": "2015-06-02T14:02:00", "id": "XSA-129", "href": "http://xenbits.xen.org/xsa/advisory-129.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:24:09", "references": [], "description": "#### ISSUE DESCRIPTION\nLogic is in place to avoid writes to certain host config space fields when the guest must nevertheless be able to access their virtual counterparts. A bug in how this logic deals with accesses spanning multiple fields allows the guest to write to the host MSI message data field.\nWhile generally the writes write back the values previously read, their value in config space may have got changed by the host between the qemu read and write. In such a case host side interrupt handling could become confused, possibly losing interrupts or allowing spurious interrupt injection into other guests.\n#### IMPACT\nCertain untrusted guest administrators may be able to confuse host side interrupt handling, leading to a Denial of Service.\n#### VULNERABLE SYSTEMS\nXen versions 3.3 and onwards are vulnerable due to supporting PCI pass-through.\nOnly x86 systems are vulnerable. ARM systems are not vulnerable.\nOnly HVM guests with their device model run in Dom0 can take advantage of this vulnerability.\nOnly HVM guests which have been granted access to physical PCI devices (`PCI passthrough') can take advantage of this vulnerability.\nFurthermore, the vulnerability is only applicable when the passed-through PCI devices are MSI-capable. (Most modern devices are.)\n", "edition": 1, "reporter": "Xen Project", "published": "2015-06-02T12:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Potential unintended writes to host MSI message data field via qemu", "type": "xen", "bulletinFamily": "software", "affectedSoftware": [{"name": "Xen", "version": "3.3", "operator": "ge"}], "cvelist": ["CVE-2015-4103"], "modified": "2015-06-02T14:02:00", "id": "XSA-128", "href": "http://xenbits.xen.org/xsa/advisory-128.html", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:24:09", "references": [], "description": "#### ISSUE DESCRIPTION\nEmulation routines in the hypervisor dealing with certain system devices check whether the access size by the guest is a supported one. When the access size is unsupported these routines failed to set the data to be returned to the guest for read accesses, so that hypervisor stack contents are copied into the destination of the operation, thus becoming visible to the guest.\n#### IMPACT\nA malicious HVM guest might be able to read sensitive data relating to other guests.\n#### VULNERABLE SYSTEMS\nXen 3.2.x and later are vulnerable. Xen 3.1.x and earlier have not been inspected.\nOnly HVM guests can take advantage of this vulnerability.\nOnly x86 systems are vulnerable. ARM systems are not vulnerable.\n", "edition": 1, "reporter": "Xen Project", "published": "2015-03-05T12:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "xen", "title": "Information leak via internal x86 system device emulation", "bulletinFamily": "software", "affectedSoftware": [{"name": "Xen", "version": "3.2.x", "operator": "ge"}], "cvelist": ["CVE-2015-2044"], "modified": "2015-03-05T12:18:00", "id": "XSA-121", "href": "http://xenbits.xen.org/xsa/advisory-121.html", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}]}