14 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-9932
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a...
Debian: Security Advisory (DLA-964-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 964-1] xen security update
Package : xen Version : 4.1.6.lts1-8 CVE ID : CVE-2016-9932 CVE-2017-7995 CVE-2017-8903 CVE-2017-8904 CVE-2017-8905 Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-9932 XSA-200...
Debian DSA-3847-1 : xen - security update
Jan Beulich and Jann Horn discovered multiple vulnerabilities in the Xen hypervisor, which may lead to privilege escalation, guest-to-host breakout, denial of service or information leaks. In additional to the CVE identifiers listed above, this update also addresses the vulnerabilities announced ...
[SECURITY] [DSA 3847-1] xen security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3847-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 09, 2017 https://www.debian.org/security/faq -...
CVE-2016-9932
CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix...
CVE-2016-9932
CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix...
CVE-2016-9932
CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix...
CVE-2016-9932
CVE-2016-9932 affects the Xen hypervisor (CMPXCHG8B emulation) from Xen 3.3.x through 4.7.x on x86. It allows local HVM guest OS users to disclose sensitive host stack memory via a supposedly-ignored operand size prefix. Connected advisories note this as XSA-200 and document patched versions in X...
Citrix XenServer Multiple Security Updates (CTX219378)
Security vulnerabilities have been identified in Citrix XenServer that may allow malicious code running within a guest VM to read a small part of hypervisor memory and allow privileged-mode code running within a guest VM to hang or crash the host. SPDX-FileCopyrightText: 2017 Greenbone AG Some te...
openSUSE Security Update : xen (openSUSE-2017-4)
This updates xen to version 4.5.5 to fix the following issues : - An unprivileged user in a guest could gain guest could escalate privilege to that of the guest kernel, if it had could invoke the instruction emulator. Only 64-bit x86 HVM guest were affected. Linux guest have not been vulnerable...
Fedora 24 : xen (2016-bcbae0781f)
x86 CMPXCHG8B emulation fails to ignore operand size override XSA-200, CVE-2016-9932 1404262 ---- ARM guests may induce host asynchronous abort XSA-201, CVE-2016-9815, CVE-2016-9816, CVE-2016-9817, CVE-2016-9818 1399747 qemu: Divide by zero vulnerability in cirrusdocopy 1399055 CVE-2016-9921,...
Fedora Update for xen FEDORA-2016-1b868c23a9
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 25 : xen (2016-1b868c23a9)
x86 CMPXCHG8B emulation fails to ignore operand size override XSA-200, CVE-2016-9932 1404262 ---- ARM guests may induce host asynchronous abort XSA-201, CVE-2016-9815, Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...