Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:12 p.m.4 views

CVE-2022-42309

Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong pointer during node creation in an error path, resulting in a crash of xenstored or a memory corruption in xenstored causing further damage. Entering the error path can be...

8.8CVSS6.8AI score0.00272EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/12/07 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2022:4332-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.00277EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2022/11/29 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:4241-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.00375EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2022/11/24 12:0 a.m.27 views

Fedora: Security Advisory for xen (FEDORA-2022-9f51d13fa3)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS6.7AI score0.00586EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/11/21 12:0 a.m.25 views

Xenstore: Guests can crash xenstored (XSA-414)

Xenstore: a malicious guest can cause xenstored to use a wrong pointer during node creation in an error path, resulting in a crash of xenstored or a memory corruption in xenstored causing further damage. Entering the error path can be controlled by the guest e.g. by exceeding the quota value of...

8.8CVSS7.8AI score0.00272EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/11/18 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2022:4051-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.00375EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2022/11/17 12:0 a.m.39 views

SUSE SLED15: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2022:4007-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4007-1 advisory. - CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing bsc1203806. - CVE-2022-3374...

8.8CVSS6.8AI score0.00277EPSS
Exploits0References56
OpenVAS
OpenVAS
added 2022/11/15 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:3971-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.00375EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2022/11/13 12:0 a.m.27 views

SUSE SLES15 Security Update : xen (SUSE-SU-2022:3928-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3928-1 advisory. - CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing bsc1203806. - CVE-2022-33748: Fixed DoS due to race in locking...

8.8CVSS6.8AI score0.00494EPSS
Exploits3References63
Debian
Debian
added 2022/11/06 8:0 p.m.36 views

[SECURITY] [DSA 5272-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5272-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 06, 2022 https://www.debian.org/security/faq -...

8.8CVSS7.7AI score0.00287EPSS
Exploits0
Circl
Circl
added 2022/11/01 3:14 p.m.5 views

CVE-2022-42309

creationtimestamp| type| source ---|---|--- 2022-11-01 15:14:03+00:00| seen| https://t.me/cibsecurity/52362...

8.8CVSS8AI score0.00272EPSS
Exploits0References1
OSV
OSV
added 2022/11/01 1:15 p.m.23 views

CVE-2022-42309

Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong pointer during node creation in an error path, resulting in a crash of xenstored or a memory corruption in xenstored causing further damage. Entering the error path can be...

8.8CVSS1.6AI score
Exploits0References8
OSV
OSV
added 2022/11/01 1:15 p.m.1 views

DEBIAN-CVE-2022-42309

Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong pointer during node creation in an error path, resulting in a crash of xenstored or a memory corruption in xenstored causing further damage. Entering the error path can be...

8.8CVSS8.1AI score0.00272EPSS
Exploits0References1
CVE
CVE
added 2022/11/01 12:0 a.m.169 views

CVE-2022-42309

CVE-2022-42309 is a Xenstore vulnerability in the Xen hypervisor where a malicious guest can trigger xenstored to crash or memory-corrupt via the error path bug introduced by the XSA-115 fix. The issue stems from xenstore node creation using a wrong pointer in certain error paths, with exploitati...

8.8CVSS8.5AI score0.00272EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder