EUVD-2019-7753

Malware in sbrugna...

UVI-2021-1001703 swiotlb-xen: ensure to issue well-formed XENMEM_exchange requests

swiotlb-xen: ensure to issue well-formed XENMEMexchange requests This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.11 by commit...

The vulnerability of the XENMEM_exchange component in Xen hypervisors allows a hacker to gain unauthorized access to confidential data, cause service failures, and compromise data integrity.

The vulnerability of the XENMEMexchange component in Xen hypervisors is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability allows an attacker to gain unauthorized access to confidential data, cause service failures, and...

CVE-2019-17342

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEMexchange was introduced...

DEBIAN-CVE-2019-17342

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEMexchange was introduced...

CVE-2019-17342

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEMexchange was introduced...

Race condition

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEMexchange was introduced...

CVE-2019-17342

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEMexchange was introduced...

openSUSE Security Update : xen (openSUSE-2019-1199)

This update for xen fixes the following issues : Security issues fixed : - CVE-2018-19967: Fixed HLE constructs that allowed guests to lock up the host, resulting in a Denial of Service DoS. XSA-282 bsc1114988 - Fixed an issue which could allow malicious PV guests may cause a host crash or gain...

SUSE SLES11 Security Update : xen (SUSE-SU-2019:14001-1)

This update for xen fixes the following issues : Security issues fixed : Fixed multiple access violations introduced by XENMEMexchange hypercall which could allow a single PV guest to leak arbitrary amounts of memory, leading to a denial of service bsc1126192. Fixed an issue which could allow a...

Xen Hypervisor XENMEM_exchange Memory Disclosure (XSA-212)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by an out-of-array memory access error in the memoryexchange function in file common/memory.c due to improper checking of XENMEMexchange input. An attacker on a 64-bit PV guest VM who has...

Fedora 23 : xen-4.5.2-5.fc23 (2015-12a089920e)

eepro100: Prevent two endless loops CVE-2015-8345, pcnet: fix rx buffer overflow CVE-2015-7512, ui: vnc: avoid floating point exception CVE-2015-8504, additional patch for XSA-158, CVE-2015-8338 long running memory operations on ARM XSA-158, CVE-2015-8338 XENMEMexchange error handling issues...

OracleVM 3.2 : xen (OVMSA-2016-0008)

The remote OracleVM system is missing necessary patches to address critical security updates : - VT-d: fix TLB flushing in dmapteclearone From: Jan Beulich The TLB flush code was wrong since xen-4.1.3-25.el5.127.20 commit: vtd-Refactor-iotlb-flush-code.patch, both ovm-3.2.9 and ovm-3.2.10 were...

openSUSE Security Update : xen (openSUSE-2016-35)

This update for xen fixes the following security issues : - CVE-2015-8568 CVE-2015-8567: xen: qemu: net: vmxnet3: host memory leakage boo959387 - CVE-2015-8550: xen: paravirtualized drivers incautious about shared memory contents XSA-155, boo957988 - CVE-2015-8558: xen: qemu: usb: infinite loop i...

openSUSE Security Update : xen (openSUSE-2016-36)

This update for xen fixes the following issues : - CVE-2015-8567,CVE-2015-8568: xen: qemu: net: vmxnet3: host memory leakage boo959387 - CVE-2015-8550: xen: paravirtualized drivers incautious about shared memory contents XSA-155, boo957988 - CVE-2015-8558: xen: qemu: usb: infinite loop in...

FreeBSD : xen-kernel -- XENMEM_exchange error handling issues (bcad3faa-b40c-11e5-9728-002590263bf5)

The Xen Project reports : Error handling in the operation may involve handing back pages to the domain. This operation may fail when in parallel the domain gets torn down. So far this failure unconditionally resulted in the host being brought down due to an internal error being assumed. This is...

SUSE SLED11 / SLES11 Security Update : xen (SUSE-SU-2015:2338-1)

This update fixes the following security issues : - bsc955399 - Fix xm migrate --logprogress. Due to logic error progress was not logged when requested. - bsc956832 - CVE-2015-8345: xen: qemu: net: eepro100: infinite loop in processing command block list - bsc956592 - xen: virtual PMU is...

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2015:2324-1)

This update fixes the following security issues : - bsc956832 - CVE-2015-8345: xen: qemu: net: eepro100: infinite loop in processing command block list - Revert x86/IO-APIC: don't create pIRQ mapping from masked RTE until kernel maintenance release goes out. - bsc956592 - xen: virtual PMU is...

SUSE SLED11 / SLES11 Security Update : xen (SUSE-SU-2015:2326-1)

This update fixes the following security issues : - bsc956832 - CVE-2015-8345: xen: qemu: net: eepro100: infinite loop in processing command block list - bsc956592 - xen: virtual PMU is unsupported XSA-163 - bsc956408 - CVE-2015-8339, CVE-2015-8340: xen: XENMEMexchange error handling issues XSA-1...

CVE-2015-8340

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service deadlock or host crash via unspecified vectors, related to XENMEMexchange error handling...