18 matches found
SUSE: Security Advisory (SUSE-SU-2014:1318-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OracleVM 3.4 : xen (OVMSA-2018-0248) (Bunker Buster) (Foreshadow) (Meltdown) (POODLE) (Spectre)
The remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2018-0248 for details. C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security Advisory OVMSA-2018-0248...
OracleVM 3.2 : xen (OVMSA-2015-0068) (POODLE) (Venom)
The remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2015-0068 for details. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security Advisory...
SUSE SLES11 Security Update : xen (SUSE-SU-2014:1710-1)
xen was updated to fix 14 security issues : - Guest effectable page reference leak in MMUMACHPHYSUPDATE handling CVE-2014-9030. - Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor CVE-2014-8867. - Missing privilege level checks in x86 HLT, LGDT, LIDT, and LMSW emulation...
Fedora Update for xen FEDORA-2015-3721
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for xen FEDORA-2014-15995
Check the version of xen SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868572";...
Fedora Update for xen FEDORA-2014-15503
Check the version of xen SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868524";...
OracleVM 3.3 : xen (OVMSA-2014-0025)
The remote OracleVM system is missing necessary patches to address critical security updates : - x86/HVM: properly bound x2APIC MSR range This is XSA-108. Additional changelog comments added to 4.3.0-55.el6.0.0.3 CVE-2014-7188 - Fix for bug 19698535 - x86emul: only emulate software interrupt...
[SECURITY] [DSA 3041-1] xen security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3041-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 01, 2014 http://www.debian.org/security/faq -...
Fedora 19 : xen-4.2.5-3.fc19 (2014-12000)
Improper MSR range used for x2APIC emulation XSA-108, CVE-2014-7188 Race condition in HVMOPtrackdirtyvram XSA-104 1145736 Missing privilege level checks in x86 HLT, LGDT, LIDT, and LMSW emulation XSA-105 1145737 Missing privilege level checks in x86 emulation of software interrupts XSA-106 114573...
Fedora 20 : xen-4.3.3-3.fc20 (2014-12036)
Improper MSR range used for x2APIC emulation XSA-108, CVE-2014-7188 Race condition in HVMOPtrackdirtyvram XSA-104 1145736 Missing privilege level checks in x86 HLT, LGDT, LIDT, and LMSW emulation XSA-105 1145737 Missing privilege level checks in x86 emulation of software interrupts XSA-106 114573...
Fedora Update for xen FEDORA-2014-12000
Check the version of xen SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868383";...
openSUSE Security Update : xen (openSUSE-SU-2014:1281-1)
XEN was updated to fix security issues and bugs. Security issues fixed : - bnc897657 - CVE-2014-7188: XSA-108 Improper MSR range used for x2APIC emulation - bnc895802 - CVE-2014-7156: XSA-106: Missing privilege level checks in x86 emulation of software interrupts - bnc895799 - CVE-2014-7155:...
openSUSE: Security Advisory for xen (openSUSE-SU-2014:1281-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : xen (openSUSE-SU-2014:1279-1)
XEN was updated to fix various bugs and security issues. Security issues fixed : - bnc897657 - CVE-2014-7188: XSA-108 Improper MSR range used for x2APIC emulation - bnc895802 - CVE-2014-7156: XSA-106: Missing privilege level checks in x86 emulation of software interrupts - bnc895799 -...
xen: security and bugfix update (important)
XEN was updated to fix security issues and bugs. Security issues fixed: - bnc897657 - CVE-2014-7188: XSA-108 Improper MSR range used for x2APIC emulation - bnc895802 - CVE-2014-7156: XSA-106: Missing privilege level checks in x86 emulation of software interrupts - bnc895799 - CVE-2014-7155:...
CVE-2014-7188
The hvmmsrreadintercept function in arch/x86/hvm/hvm.c in Xen 4.1 through 4.4.x uses an improper MSR range for x2APIC emulation, which allows local HVM guests to cause a denial of service host crash or read data from the hypervisor or other guests via unspecified vectors...
CVE-2014-7188
Technical details for CVE-2014-7188 are not publicly provided in the connected documents. No product/version/root-cause/impact is specified here. Monitor for updates in future disclosures.