19 matches found
SUSE CVE-2012-3495
The physdevgetfreepirq hypercall in arch/x86/physdev.c in Xen 4.1.x and Citrix XenServer 6.0.2 and earlier uses the return value of the getfreepirq function as an array index without checking that the return value indicates an error, which allows guest OS users to cause a denial of service invali...
SUSE: Security Advisory (SUSE-SU-2012:1132-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2012:1133-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OracleVM 3.2 : xen (OVMSA-2015-0068) (POODLE) (Venom)
The remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2015-0068 for details. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security Advisory...
Fedora Update for xen FEDORA-2013-10929
Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2013-10929 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Fedora Update for xen FEDORA-2013-7432
Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2013-7432 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...
Fedora Update for xen FEDORA-2013-6723
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for xen FEDORA-2013-2002
Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2013-2002 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...
SuSE 11.2 Security Update : Xen (SAT Patch Number 6748)
XEN was updated 4.1.3 to fix multiple bugs and security issues. The following security issues have been fixed : - xen: hypercall setdebugreg vulnerability XSA-12. CVE-2012-3494 - xen: hypercall physdevgetfreepirq vulnerability XSA-13. CVE-2012-3495 - xen: XENMEMpopulatephysmap DoS vulnerability...
SuSE 11.2 Security Update : Xen (SAT Patch Number 6748)
XEN was updated 4.1.3 to fix multiple bugs and security issues. The following security issues have been fixed : - xen: hypercall setdebugreg vulnerability XSA-12. CVE-2012-3494 - xen: hypercall physdevgetfreepirq vulnerability XSA-13. CVE-2012-3495 - xen: XENMEMpopulatephysmap DoS vulnerability...
openSUSE: Security Advisory for XEN (openSUSE-SU-2012:1572-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2012-3495
The physdevgetfreepirq hypercall in arch/x86/physdev.c in Xen 4.1.x and Citrix XenServer 6.0.2 and earlier uses the return value of the getfreepirq function as an array index without checking that the return value indicates an error, which allows guest OS users to cause a denial of service invali...
CVE-2012-3495
CVE-2012-3495 affects the Xen hypervisor: the physdev_get_free_pirq hypercall does not validate the return value of get_free_pirq, and if that call fails it uses the error code as an array index. This can cause an invalid memory write leading to host crash and, per the description, potential priv...
Fedora Update for xen FEDORA-2012-17408
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for xen FEDORA-2012-13434
Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2012-13434 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Fedora Update for xen FEDORA-2012-13443
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for xen FEDORA-2012-13434
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Security Update for Xen (important)
Security Update for Xen Following bug and security fixes were applied: - bnc776995 - attaching scsi control luns with pvscsi - xend/pvscsi: fix passing of SCSI control LUNs xen-bug776995-pvscsi-no-devname.patch - xend/pvscsi: fix usage of persistant device names for SCSI devices...
XenSource Xen 'physdev_get_free_pirq'拒绝服务漏洞
BUGTRAQ ID: 55406 CVE ID: CVE-2012-3495 Xen是一个开放源代码虚拟机监视器,由剑桥大学开发。 Xen 4.1及其他版本在实现上存在本地拒绝服务漏洞,对客户端操作系统有访问权限的攻击者可利用此漏洞使主机操作系统崩溃。 0 XenSource Xen 4.x XenSource Xen 3.x 厂商补丁: XenSource --------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://xen.xensource.com/...