19 matches found
SUSE CVE-2015-3259
Stack-based buffer overflow in the xl command line utility in Xen 4.1.x through 4.5.x allows local guest administrators to gain privileges via a long configuration argument...
SUSE: Security Advisory (SUSE-SU-2015:1479-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:1302-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:2324-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 3414-1] xen security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3414-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 09, 2015 https://www.debian.org/security/faq -...
openSUSE: Security Advisory for xen (openSUSE-SU-2015:2003-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : xen (openSUSE-2015-750)
xen was updated to fix 12 security issues. These security issues were fixed : - CVE-2015-7972: Populate-on-demand balloon size inaccuracy can crash guests bsc951845. - CVE-2015-7969: Leak of main per-domain vcpu pointer array DoS bsc950703. - CVE-2015-7969: Leak of per-domain profiling-related vc...
Security update for xen (important)
xen was updated to fix 12 security issues. These security issues were fixed: - CVE-2015-7972: Populate-on-demand balloon size inaccuracy can crash guests bsc951845. - CVE-2015-7969: Leak of main per-domain vcpu pointer array DoS bsc950703. - CVE-2015-7969: Leak of per-domain profiling-related vcp...
SUSE: Security Advisory for xen (SUSE-SU-2015:1302-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED11 / SLES11 Security Update : xen (SUSE-SU-2015:1479-1)
xen was updated to fix the following security issues : - CVE-2015-5165: QEMU leak of uninitialized heap memory in rtl8139 device model bsc939712, XSA-140 - CVE-2015-5166: Use after free in QEMU/Xen block unplug protocol bsc939709, XSA-139 - CVE-2015-2751: Certain domctl operations could have be...
SUSE SLED11 Security Update : xen (SUSE-SU-2015:1479-2)
xen was updated to fix the following security issues : - CVE-2015-5165: QEMU leak of uninitialized heap memory in rtl8139 device model bsc939712, XSA-140 - CVE-2015-5166: Use after free in QEMU/Xen block unplug protocol bsc939709, XSA-139 - CVE-2015-2751: Certain domctl operations could have be...
Fedora Update for xen FEDORA-2015-12657
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2015:1302-1)
xen was updated to fix two security issues. These security issues were fixed : - CVE-2015-3259: xl command line config handling stack overflow bsc935634, XSA-137. - CVE-2015-5154: Host code execution via IDE subsystem CD-ROM bsc938344. The update package also includes non-security fixes. See...
SUSE SLED11 / SLES11 Security Update : xen (SUSE-SU-2015:1299-1)
xen was updated to fix two security issues. These security issues were fixed : - CVE-2015-3259: xl command line config handling stack overflow bsc935634, XSA-137. - CVE-2015-5154: Host code execution via IDE subsystem CD-ROM bsc938344. The update package also includes non-security fixes. See...
Fedora Update for xen FEDORA-2015-11308
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for xen FEDORA-2015-11247
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-3259
CVE-2015-3259 affects the Xen hypervisor: a stack-based buffer overflow in the xl command line utility (xl config handling) allows a local guest administrator to gain privileges. Impact is limited to Xen 4.1.x through 4.5.x with long configuration arguments. Connected advisories (e.g., Gentoo GLS...
FreeBSD : cups-filters -- texttopdf integer overflow (bf1d9331-21b6-11e5-86ff-14dae9d210b8)
Stefan Cornelius from Red Hat reports : An integer overflow flaw leading to a heap-based buffer overflow was discovered in the way the texttopdf utility of cups-filter processed print jobs with a specially crafted line size. An attacker being able to submit print jobs could exploit this flaw to...
cups-filters -- texttopdf integer overflow
Stefan Cornelius from Red Hat reports: An integer overflow flaw leading to a heap-based buffer overflow was discovered in the way the texttopdf utility of cups-filter processed print jobs with a specially crafted line size. An attacker being able to submit print jobs could exploit this flaw to...