5 matches found
SUSE CVE-2015-8339
The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...
SUSE CVE-2015-8340
The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service deadlock or host crash via unspecified vectors, related to XENMEMexchange error handling...
UBUNTU-CVE-2019-17342
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEMexchange was introduced...
The vulnerability of Xen hypervisors, allowing a attacker to gain access to the hypervisor’s memory
The vulnerability of Xen hypervisors known as XSA-212 is related to access control deficiencies. Exploiting this vulnerability could allow a malicious actor, operating locally, to gain access to the hypervisor’s memory beyond the guest system’s input/output arrays, given that XSA-29 previously...
DEBIAN-CVE-2017-7228
An issue known as XSA-212 was discovered in Xen, with fixes available for 4.8.x, 4.7.x, 4.6.x, 4.5.x, and 4.4.x. The earlier XSA-29 fix introduced an insufficient check on XENMEMexchange input, allowing the caller to drive hypervisor memory accesses outside of the guest provided input/output arra...