Lucene search
K

154 matches found

UbuntuCve
UbuntuCve
added 2017/07/05 1:29 a.m.42 views

CVE-2017-10916

The vCPU context-switch implementation in Xen through 4.8.x improperly interacts with the Memory Protection Extensions MPX and Protection Key PKU features, which makes it easier for guest OS users to defeat ASLR and other protection mechanisms, aka XSA-220...

7.5CVSS6.9AI score0.01349EPSS
Exploits0References2
OSV
OSV
added 2017/07/05 1:29 a.m.7 views

UBUNTU-CVE-2017-10916

The vCPU context-switch implementation in Xen through 4.8.x improperly interacts with the Memory Protection Extensions MPX and Protection Key PKU features, which makes it easier for guest OS users to defeat ASLR and other protection mechanisms, aka XSA-220...

7.5CVSS6.9AI score0.01349EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/07/05 1:0 a.m.32 views

CVE-2017-10916

The vCPU context-switch implementation in Xen through 4.8.x improperly interacts with the Memory Protection Extensions MPX and Protection Key PKU features, which makes it easier for guest OS users to defeat ASLR and other protection mechanisms, aka XSA-220...

8.4AI score0.01349EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2017/07/05 1:0 a.m.55 views

CVE-2017-10916

The vCPU context-switch implementation in Xen through 4.8.x improperly interacts with the Memory Protection Extensions MPX and Protection Key PKU features, which makes it easier for guest OS users to defeat ASLR and other protection mechanisms, aka XSA-220...

7.5CVSS5.7AI score0.01349EPSS
Exploits0
CNVD
CNVD
added 2017/07/05 12:0 a.m.7 views

Xen vCPU context-switch implementation process security bypass vulnerability

Xen is an open source virtual machine monitor product developed at the University of Cambridge in the United Kingdom. A security vulnerability in Xen's vCPU context-switch implementation allows an attacker to exploit the vulnerability to compromise ASLR and other protection mechanisms...

7.5CVSS6.7AI score0.01349EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/06/10 12:0 a.m.45 views

Ubuntu 12.04 LTS : linux vulnerabilities (USN-2996-1)

Jann Horn discovered that eCryptfs improperly attempted to use the mmap handler of a lower filesystem that did not implement one, causing a recursive page fault to occur. A local unprivileged attacker could use to cause a denial of service system crash or possibly execute arbitrary code with...

10CVSS7AI score0.2593EPSS
Exploits33References17
Tenable Nessus
Tenable Nessus
added 2016/05/12 12:0 a.m.41 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-2970-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2970-1 advisory. Ralf Spenneberg discovered that the Aiptek Tablet USB device driver in the Linux kernel did not properly validate the endpoints reported by the device. A...

7.8CVSS7.1AI score0.01946EPSS
Exploits19References15
Tenable Nessus
Tenable Nessus
added 2016/05/12 12:0 a.m.57 views

Ubuntu 16.04 LTS : Linux kernel (Raspberry Pi 2) vulnerabilities (USN-2965-3)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2965-3 advisory. Jann Horn discovered that the extended Berkeley Packet Filter eBPF implementation in the Linux kernel did not properly reference count file descriptors,...

10CVSS7.1AI score0.2593EPSS
Exploits32References16
Tenable Nessus
Tenable Nessus
added 2016/05/12 12:0 a.m.72 views

Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2968-2)

USN-2968-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 14.04 LTS for Ubuntu 12.04 LTS. Ralf Spenneberg discovered that the Aiptek Tablet USB device driver in the Linux kerne...

7.8CVSS7.6AI score0.01946EPSS
Exploits22References17
Ubuntu
Ubuntu
added 2016/05/09 9:57 p.m.89 views

USN-2969-1: Linux kernel (Utopic HWE) vulnerabilities

Ralf Spenneberg discovered that the Aiptek Tablet USB device driver in the Linux kernel did not properly validate the endpoints reported by the device. An attacker with physical access could cause a denial of service system crash. CVE-2015-7515 Ben Hawkes discovered that the Linux kernel's AIO...

7.8CVSS6.6AI score0.01946EPSS
Exploits14
Ubuntu
Ubuntu
added 2016/05/09 9:23 p.m.91 views

USN-2968-1: Linux kernel vulnerabilities

Ralf Spenneberg discovered that the Aiptek Tablet USB device driver in the Linux kernel did not properly validate the endpoints reported by the device. An attacker with physical access could cause a denial of service system crash. CVE-2015-7515 Ben Hawkes discovered that the Linux kernel's AIO...

7.8CVSS7.4AI score0.01946EPSS
Exploits19
Cvelist
Cvelist
added 2016/04/12 4:0 p.m.21 views

CVE-2016-3157

The switchto function in arch/x86/kernel/process64.c in the Linux kernel does not properly context-switch IOPL on 64-bit PV Xen guests, which allows local guest OS users to gain privileges, cause a denial of service guest OS crash, or obtain sensitive information by leveraging I/O port access...

6.1AI score0.00513EPSS
Exploits0References14
UbuntuCve
UbuntuCve
added 2016/04/12 12:0 a.m.29 views

CVE-2016-3157

The switchto function in arch/x86/kernel/process64.c in the Linux kernel does not properly context-switch IOPL on 64-bit PV Xen guests, which allows local guest OS users to gain privileges, cause a denial of service guest OS crash, or obtain sensitive information by leveraging I/O port access...

7.8CVSS7.1AI score0.00513EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2015/11/19 7:56 p.m.4 views

kernel: partial ASLR bypass through TLS base addresses leak

An information leak flaw was found in the way the Linux kernel changed certain segment registers and thread-local storage TLS during a context switch. A local, unprivileged user could use this flaw to leak the user space TLS base address of an arbitrary process...

2.1CVSS6.8AI score0.00436EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/11/19 6:24 a.m.6 views

kernel: partial ASLR bypass through TLS base addresses leak

An information leak flaw was found in the way the Linux kernel changed certain segment registers and thread-local storage TLS during a context switch. A local, unprivileged user could use this flaw to leak the user space TLS base address of an arbitrary process...

2.1CVSS6.8AI score0.00436EPSS
Exploits0References4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Linux kernel <= 2.2.18 ptrace/execve Race Condition Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/2529/info The Linux kernel is the core of all distributions of the Linux Operating System. It was originally written by Linus Torvalds, and is maintained by a community of developers. A problem in the Linux Kernel could...

7.1AI score
Exploits0
NVD
NVD
added 2014/05/02 2:55 p.m.24 views

CVE-2014-3125

Xen 4.4.x, when running on an ARM system, does not properly context switch the CNTKCTLEL1 register, which allows local guest users to modify the hardware timers and cause a denial of service crash via unspecified vectors...

6.2CVSS6.2AI score0.00629EPSS
Exploits0References6
CVE
CVE
added 2014/05/02 2:0 p.m.56 views

CVE-2014-3125

CVE-2014-3125 concerns Xen 4.4.x on ARM where CNTKCTL_EL1 register is not properly context switched. This allows a local guest to modify hardware timers and, per the XSA-91 advisory, may enable a guest kernel to reconfigure timer interrupts for the entire system, potentially causing a denial of s...

6.2CVSS6.3AI score0.00629EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2014/05/02 2:0 p.m.63 views

CVE-2014-3125

Xen 4.4.x, when running on an ARM system, does not properly context switch the CNTKCTLEL1 register, which allows local guest users to modify the hardware timers and cause a denial of service crash via unspecified vectors...

6.2CVSS5.4AI score0.00629EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.84 views

Scientific Linux Security Update : kernel on SL5.x i386/x86_64

the Xen implementation did not prevent applications running in a para-virtualized guest from modifying CR4 TSC. This could cause a local denial of service. CVE-2007-5907, Important - Tavis Ormandy reported missing boundary checks in the Virtual Dynamic Shared Objects vDSO implementation. This...

7.1CVSS5.9AI score0.03209EPSS
Exploits5References9
Rows per page
Query Builder