Lucene search

PRIOn knowledge basePRION:CVE-2013-4355

HistoryOct 01, 2013 - 5:55 p.m.

Design/Logic Flaw

2013-10-0117:55:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.5%

JSON

Xen 4.3.x and earlier does not properly handle certain errors, which allows local HVM guests to obtain hypervisor stack memory via a (1) port or (2) memory mapped I/O write or (3) other unspecified operations related to addresses without associated memory.

CPENameOperatorVersion
xeneq3.2.0
xeneq4.1.5
xeneq3.2.1
xeneq4.2.2
xeneq4.2.3
xeneq3.0.4
xeneq3.4.0
xeneq4.0.4
xeneq4.0.2
xeneq3.3.2

Name	Operator	Version
xen	eq	3.2.0
xen	eq	4.1.5
xen	eq	3.2.1
xen	eq	4.2.2
xen	eq	4.2.3
xen	eq	3.0.4
xen	eq	3.4.0
xen	eq	4.0.4
xen	eq	4.0.2
xen	eq	3.3.2

Rows per page:

1-10 of 331

References

lists.opensuse.org/opensuse-security-announce/2014-03/msg00015.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html

lists.opensuse.org/opensuse-security-announce/2014-04/msg00000.html

lists.opensuse.org/opensuse-updates/2013-11/msg00009.html

rhn.redhat.com/errata/RHSA-2013-1790.html

security.gentoo.org/glsa/glsa-201407-03.xml

www.debian.org/security/2014/dsa-3006

www.openwall.com/lists/oss-security/2013/09/30/1