18 matches found
SUSE CVE-2010-3699
The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being shut down or create a zombie domain, causes a hang in zenwatch, or prevents unspecified xm commands from working properly, related to 1...
SUSE CVE-2010-4247
The doblockioop function in 1 drivers/xen/blkback/blkback.c and 2 drivers/xen/blktap/blktap.c in Xen before 3.4.0 for the Linux kernel 2.6.18, and possibly other versions, allows guest OS users to cause a denial of service infinite loop and CPU consumption via a large production request index to...
blkif responses leak backend stack data
ISSUE DESCRIPTION The block interface response structure has some discontiguous fields. Certain backends populate the structure fields of an otherwise uninitialized instance of this structure on their stacks, leaking data through the internal or trailing padding field. IMPACT A malicious...
SUSE: Security Advisory for Xen (SUSE-SU-2015:0613-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : xen (openSUSE-2015-434) (Venom)
Xen was updated to 4.4.2 to fix multiple vulnerabilities and non-security bugs. The following vulnerabilities were fixed : - CVE-2015-4103: Potential unintended writes to host MSI message data field via qemu XSA-128 boo931625 - CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests...
Security update for xen (important)
Xen was updated to 4.4.2 to fix multiple vulnerabilities and non-security bugs. The following vulnerabilities were fixed: CVE-2015-4103: Potential unintended writes to host MSI message data field via qemu XSA-128 boo931625 CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests XSA-129...
Security update for xen (important)
Xen was updated to 4.3.4 to fix multiple vulnerabities and non-security bugs. The following vulnerabilities were fixed: - Long latency MMIO mapping operations are not preemptible XSA-125 CVE-2015-2752 bnc922705 - Unmediated PCI command register access in qemu XSA-126 CVE-2015-2756 bnc922706 -...
CVE-2010-4247
CVE-2010-4247 is a Xen/blkback-blktap DoS vulnerability affecting Xen on Linux kernel 2.6.18 and similar versions, where do_block_io_op can loop indefinitely due to a large production request index in the blkback or blktap back-end drivers, causing CPU exhaustion. Public documents in the Oracle L...
CVE-2010-4247
The doblockioop function in 1 drivers/xen/blkback/blkback.c and 2 drivers/xen/blktap/blktap.c in Xen before 3.4.0 for the Linux kernel 2.6.18, and possibly other versions, allows guest OS users to cause a denial of service infinite loop and CPU consumption via a large production request index to...
RHEL 5 : kernel (RHSA-2011:0004)
Updated kernel packages that fix multiple security issues, several bugs, and add an enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, whi...
xen: request-processing loop is unbounded in blkback
The doblockioop function in 1 drivers/xen/blkback/blkback.c and 2 drivers/xen/blktap/blktap.c in Xen before 3.4.0 for the Linux kernel 2.6.18, and possibly other versions, allows guest OS users to cause a denial of service infinite loop and CPU consumption via a large production request index to...
kernel security, bug fix, and enhancement update
2.6.18-194.32.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
PT-2011-1486 · Linux +1 · Xen +1
Name of the Vulnerable Software and Affected Versions: Xen versions prior to 3.4.0 for the Linux kernel 2.6.18 Description: The issue allows guest OS users to cause a denial of service, resulting in an infinite loop and CPU consumption. This is achieved by sending a large production request index...
CVE-2010-3699
The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being shut down or create a zombie domain, causes a hang in zenwatch, or prevents unspecified xm commands from working properly, related to 1...
Design/Logic Flaw
The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being shut down or create a zombie domain, causes a hang in zenwatch, or prevents unspecified xm commands from working properly, related to 1...
CVE-2010-3699
CVE-2010-3699 concerns the Xen 3.x backend driver. The vulnerability allows a guest OS user to trigger a denial of service via a kernel thread leak, which can prevent the device and guest OS from being shut down or create a zombie domain, and may cause a hang in zenwatch or disrupt some xm comman...
CVE-2010-3699
The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being shut down or create a zombie domain, causes a hang in zenwatch, or prevents unspecified xm commands from working properly, related to 1...
CVE-2010-3699
The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being shut down or create a zombie domain, causes a hang in zenwatch, or prevents unspecified xm commands from working properly, related to 1...