7 matches found
SUSE SLES11 Security Update : xen (SUSE-SU-2019:14199-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2019:14199-1 advisory. - The ahcicommitbuf function in ide/ahci.c in QEMU allows attackers to cause a denial of service NULL dereference when the command header...
SUSE: Security Advisory (SUSE-SU-2019:2753-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : xen (SUSE-SU-2020:0388-1)
This update for xen fixes the following issues : CVE-2018-12207: Fixed a race condition where untrusted virtual machines could have been using the Instruction Fetch Unit of the Intel CPU to cause a Machine Exception during Page Size Change, causing the CPU core to be non-functional bsc1155945...
CVE-2019-17347
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges because a guest can manipulate its virtualised %cr4 in a way that is incompatible with Linux and possibly other guest kernels...
ALPINE-CVE-2019-17347
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges because a guest can manipulate its virtualised %cr4 in a way that is incompatible with Linux and possibly other guest kernels...
CVE-2019-17347
CVE-2019-17347 affects Xen 4.11.x and earlier, where a PV (paravirtualized) x86 guest can manipulate its virtualised %cr4 to cause a denial of service or privilege escalation. The root cause is described as PV kernel context switch corruption, addressed in primary Xen/XSA advisories for the 4.11....
Xen Project fsgsbase CPU Feature Privilege Escalation Vulnerability (XSA-293)
According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a privilege escalation vulnerability. Only x86 systems with the fsgsbase CPU feature are affected. Note that Nessus has checked the changeset versions based on the xen.git change log...