Lucene search

PRIOn knowledge basePRION:CVE-2013-1964

HistoryMay 21, 2013 - 6:55 p.m.

Information disclosure

2013-05-2118:55:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.7%

JSON

Xen 4.0.x and 4.1.x incorrectly releases a grant reference when releasing a non-v1, non-transitive grant, which allows local guest administrators to cause a denial of service (host crash), obtain sensitive information, or possibly have other impacts via unspecified vectors.

CPENameOperatorVersion
xeneq4.1.5
xeneq4.0.4
xeneq4.0.2
xeneq4.1.2
xeneq4.0.0
xeneq4.1.1
xeneq4.1.0
xeneq4.1.3
xeneq4.1.4
xeneq4.0.1

Name	Operator	Version
xen	eq	4.1.5
xen	eq	4.0.4
xen	eq	4.0.2
xen	eq	4.1.2
xen	eq	4.0.0
xen	eq	4.1.1
xen	eq	4.1.0
xen	eq	4.1.3
xen	eq	4.1.4
xen	eq	4.0.1

Rows per page:

1-10 of 111

References

lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html

secunia.com/advisories/55082

security.gentoo.org/glsa/glsa-201309-24.xml

www.debian.org/security/2013/dsa-2666

www.openwall.com/lists/oss-security/2013/04/18/9

www.securityfocus.com/bid/59293

www.securitytracker.com/id/1028459

lists.fedoraproject.org/pipermail/package-announce/2013-May/104537.html

7.3 High

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.7%

JSON

Related for PRION:CVE-2013-1964