3 matches found
SUSE CVE-2017-10916
The vCPU context-switch implementation in Xen through 4.8.x improperly interacts with the Memory Protection Extensions MPX and Protection Key PKU features, which makes it easier for guest OS users to defeat ASLR and other protection mechanisms, aka XSA-220...
SUSE: Security Advisory (SUSE-SU-2017:1812-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-10916
CVE-2017-10916 is an information-leak flaw in the Xen vCPU context-switch handling of Memory Protection Extensions (MPX) and Protection Key (PKU). The issue enables guest OS users to potentially bypass ASLR and related protections. Public advisories (Debian, SUSE, Fedora/OpenVAS/NASL) associate t...