Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2017-12137

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arch/x86/mm.c in Xen allows local PV guest OS users to gain host OS privileges via vectors related to mapgrantref. CVE-2017-12137 Note that Nessus relies on the...

8.8CVSS7.3AI score0.00437EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2017:2339-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.04028EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2017:2327-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.04028EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2018/02/06 12:0 a.m.40 views

Debian: Security Advisory (DLA-1132-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.7AI score0.0367EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/11/17 12:0 a.m.46 views

SUSE SLES12 Security Update : xen (SUSE-SU-2017:2327-2)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information XSA-226, bsc1051787. - CVE-2017-12137: Incorrectly-aligned updates...

8.8CVSS6.5AI score0.04028EPSS
Exploits0References24
Tenable Nessus
Tenable Nessus
added 2017/09/22 12:0 a.m.43 views

SUSE SLES12 Security Update : xen (SUSE-SU-2017:2541-1)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information XSA-226, bsc1051787. - CVE-2017-12137: Incorrectly-aligned updates...

8.8CVSS7.2AI score0.04028EPSS
Exploits0References35
Tenable Nessus
Tenable Nessus
added 2017/09/14 12:0 a.m.259 views

SUSE SLES11 Security Update : xen (SUSE-SU-2017:2450-1)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information XSA-226, bsc1051787. - CVE-2017-12137: Incorrectly-aligned updates...

8.8CVSS7.2AI score0.04028EPSS
Exploits0References34
OSV
OSV
added 2017/09/13 12:41 p.m.7 views

SUSE-SU-2017:2450-1 Security update for xen

This update for xen fixes several issues. These security issues were fixed: - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information XSA-226, bsc1051787. - CVE-2017-12137: Incorrectly-aligned updates ...

8.8CVSS7.9AI score0.04028EPSS
Exploits0References24
OPENSUSE Linux
OPENSUSE Linux
added 2017/09/08 9:8 p.m.128 views

Security update for xen (important)

This update for xen fixes several issues. These security issues were fixed: - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information XSA-226, bsc1051787. - CVE-2017-12137: Incorrectly-aligned updates ...

7.2CVSS3.2AI score0.04028EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2017/09/05 12:0 a.m.46 views

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2017:2326-1)

This update for xen to version 4.7.3 fixes several issues. These security issues were fixed : - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information XSA-226, bsc1051787. - CVE-2017-12137:...

9.9CVSS6.9AI score0.04448EPSS
Exploits0References26
Tenable Nessus
Tenable Nessus
added 2017/09/05 12:0 a.m.44 views

SUSE SLES11 Security Update : xen (SUSE-SU-2017:2339-1)

This update for xen fixes the following issues : - CVE-2017-12855: Premature clearing of GTFwriting / GTFreading lead to potentially leaking sensitive information XSA-230, bsc1052686. - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or...

8.8CVSS6.5AI score0.04028EPSS
Exploits0References19
OSV
OSV
added 2017/09/04 11:12 a.m.10 views

SUSE-SU-2017:2339-1 Security update for xen

This update for xen fixes the following issues: - CVE-2017-12855: Premature clearing of GTFwriting / GTFreading lead to potentially leaking sensitive information XSA-230, bsc1052686. - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potential...

8.8CVSS6.5AI score0.04028EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2017/09/01 12:0 a.m.37 views

OracleVM 3.3 : xen (OVMSA-2017-0148)

The remote OracleVM system is missing necessary patches to address critical security updates : - From: Jan Beulich Subject: gnttab: correct pin status fixup for copy Regardless of copy operations only setting GNTPINhst, GNTPINdev also need to be taken into account when deciding whether to clear...

8.8CVSS6.9AI score0.00452EPSS
Exploits0References4
OSV
OSV
added 2017/08/31 7:40 p.m.10 views

SUSE-SU-2017:2319-1 Security update for xen

This update for xen fixes several issues. These security issues were fixed: - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information XSA-226, bsc1051787. - CVE-2017-12137: Incorrectly-aligned updates ...

8.8CVSS7.1AI score0.04028EPSS
Exploits0References15
CVE
CVE
added 2017/08/24 2:0 p.m.114 views

CVE-2017-12137

CVE-2017-12137 affects Xen hypervisor, with a local privilege escalation via map_grant_ref in arch/x86/mm.c that could let a local PV guest OS user gain host privileges. The linked documents confirm Xen is the vulnerable component and identify the underlying issue as a map_grant_ref related flaw....

8.8CVSS6.1AI score0.00437EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/08/23 12:0 a.m.70 views

Fedora 26 : xen (2017-f336ba205d)

Qemu: serial: host memory leakage 16550A UART emulation CVE-2017-5579 1416162 Qemu: display: cirrus: OOB read access issue CVE-2017-7718 1443444 xen: various flaws 1481765 multiple problems with transitive grants XSA-226, CVE-2017-12135 x86: PV privilege escalation via mapgrantref XSA-227,...

8.8CVSS6.7AI score0.00499EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2017/08/18 12:0 a.m.46 views

Xen Hypervisor Multiple Vulnerabilities (XSA-226 - XSA-230)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by multiple vulnerabilities. Note that Nessus has checked the changeset versions based on the xen.git change log. Nessus did not check guest hardware configurations or if patches were applie...

8.8CVSS7AI score0.00497EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2017/08/16 12:0 a.m.78 views

Citrix XenServer Multiple Security Updates (CTX225941)

A number of security vulnerabilities have been identified in Citrix XenServer that may allow a malicious administrator of a guest VM to compromise the host. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

8.8CVSS6.8AI score0.00497EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/08/15 12:49 p.m.34 views

CVE-2017-12137

arch/x86/mm.c in Xen allows local PV guest OS users to gain host OS privileges via vectors related to mapgrantref...

8.8CVSS5.3AI score0.00437EPSS
Exploits0References2
Rows per page
Query Builder