14 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-9932
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a...
Debian: Security Advisory (DLA-964-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 964-1] xen security update
Package : xen Version : 4.1.6.lts1-8 CVE ID : CVE-2016-9932 CVE-2017-7995 CVE-2017-8903 CVE-2017-8904 CVE-2017-8905 Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-9932 XSA-200...
Debian DSA-3847-1 : xen - security update
Jan Beulich and Jann Horn discovered multiple vulnerabilities in the Xen hypervisor, which may lead to privilege escalation, guest-to-host breakout, denial of service or information leaks. In additional to the CVE identifiers listed above, this update also addresses the vulnerabilities announced ...
[SECURITY] [DSA 3847-1] xen security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3847-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 09, 2017 https://www.debian.org/security/faq -...
CVE-2016-9932
CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix...
CVE-2016-9932
CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix...
CVE-2016-9932
CVE-2016-9932 affects the Xen hypervisor (CMPXCHG8B emulation) from Xen 3.3.x through 4.7.x on x86. It allows local HVM guest OS users to disclose sensitive host stack memory via a supposedly-ignored operand size prefix. Connected advisories note this as XSA-200 and document patched versions in X...
CVE-2016-9932
CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix...
openSUSE Security Update : xen (openSUSE-2017-4)
This updates xen to version 4.5.5 to fix the following issues : - An unprivileged user in a guest could gain guest could escalate privilege to that of the guest kernel, if it had could invoke the instruction emulator. Only 64-bit x86 HVM guest were affected. Linux guest have not been vulnerable...
Citrix XenServer Multiple Security Updates (CTX219378)
Security vulnerabilities have been identified in Citrix XenServer that may allow malicious code running within a guest VM to read a small part of hypervisor memory and allow privileged-mode code running within a guest VM to hang or crash the host. SPDX-FileCopyrightText: 2017 Greenbone AG Some te...
Fedora 24 : xen (2016-bcbae0781f)
x86 CMPXCHG8B emulation fails to ignore operand size override XSA-200, CVE-2016-9932 1404262 ---- ARM guests may induce host asynchronous abort XSA-201, CVE-2016-9815, CVE-2016-9816, CVE-2016-9817, CVE-2016-9818 1399747 qemu: Divide by zero vulnerability in cirrusdocopy 1399055 CVE-2016-9921,...
Fedora Update for xen FEDORA-2016-1b868c23a9
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 25 : xen (2016-1b868c23a9)
x86 CMPXCHG8B emulation fails to ignore operand size override XSA-200, CVE-2016-9932 1404262 ---- ARM guests may induce host asynchronous abort XSA-201, CVE-2016-9815, Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...