Lucene search
+L

7 matches found

UbuntuCve
UbuntuCve
added 2017/08/24 2:29 p.m.30 views

CVE-2017-12137

arch/x86/mm.c in Xen allows local PV guest OS users to gain host OS privileges via vectors related to mapgrantref...

8.8CVSS7.2AI score0.00437EPSS
Exploits0References2
NVD
NVD
added 2016/09/21 2:25 p.m.16 views

CVE-2016-7092

The getpagefroml3e function in arch/x86/mm.c in Xen allows local 32-bit PV guest OS administrators to gain host OS privileges via vectors related to L3 recursive pagetables...

8.2CVSS8AI score0.00402EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2016/09/21 2:25 p.m.21 views

CVE-2016-7092

The getpagefroml3e function in arch/x86/mm.c in Xen allows local 32-bit PV guest OS administrators to gain host OS privileges via vectors related to L3 recursive pagetables...

8.2CVSS7.2AI score0.00402EPSS
Exploits0References2
Prion
Prion
added 2016/08/02 4:59 p.m.26 views

Code injection

The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries...

7.2CVSS7AI score0.004EPSS
Exploits0References10Affected Software2
CVE
CVE
added 2016/08/02 4:0 p.m.96 views

CVE-2016-6258

CVE-2016-6258 affects Xen 4.7.x and earlier, where PV pagetable code in arch/x86/mm.c allows local 32-bit PV guest OS administrators to gain host OS privileges by abusing pagetable fast-path updates. The issue is documented across multiple advisories and vendor/SUSE patches (e.g., Xen/XSA-182 upd...

8.8CVSS6.8AI score0.004EPSS
Exploits0References10Affected Software1
CVE
CVE
added 2015/10/30 3:0 p.m.95 views

CVE-2015-7835

CVE-2015-7835 affects Xen 3.4 through 4.6.x. The vulnerability lies in the mod_l2_entry function in arch/x86/mm.c, which does not properly validate level 2 page table entries. This can allow local PV guest administrators to gain privileges via a crafted superpage mapping (privilege escalation). N...

7.2CVSS5.8AI score0.00427EPSS
Exploits0References12Affected Software1
Prion
Prion
added 2014/11/19 6:59 p.m.33 views

Null pointer dereference

The dommuupdate function in arch/x86/mm.c in Xen 4.x through 4.4.x does not properly restrict updates to only PV page tables, which allows remote PV guests to cause a denial of service NULL pointer dereference by leveraging hardware emulation services for HVM guests using Hardware Assisted Paging...

5.4CVSS6.9AI score0.02221EPSS
Exploits0References8Affected Software3
Rows per page
Query Builder