Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-14318

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen 4.5.x through 4.9.x. The function gnttabcacheflush handles GNTTABOPcacheflush grant table operations. It checks to see if the...

6.5CVSS7AI score0.00422EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.19 views

RHEL 5 : xsa232_xen (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - xsa232 xen: Missing check for grant table XSA-232 CVE-2017-14318 Note that Nessus has not tested for this issue but...

7AI score0.00422EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2017:2466-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.00422EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2017:2519-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.00422EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2017:2420-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.00422EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2018/02/06 12:0 a.m.40 views

Debian: Security Advisory (DLA-1132-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.7AI score0.0367EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/11/29 12:0 a.m.36 views

Debian DSA-4050-1 : xen - security update

Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in denial of service, information leaks, privilege escalation or the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin wer...

9.1CVSS7AI score0.02806EPSS
Exploits1References18
Debian
Debian
added 2017/11/28 7:47 p.m.64 views

[SECURITY] [DSA 4050-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4050-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 28, 2017 https://www.debian.org/security/faq -...

9.1CVSS9.2AI score0.02806EPSS
Exploits1
OpenVAS
OpenVAS
added 2017/10/05 12:0 a.m.34 views

Fedora Update for xen FEDORA-2017-f7fd3fe7eb

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.00422EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/10/03 12:0 a.m.40 views

Fedora 25 : xen (2017-f7fd3fe7eb)

xen: various flaws 1490884 Missing NUMA node parameter verification XSA-231, CVE-2017-14316 Missing check for grant table XSA-232, CVE-2017-14318 cxenstored: Race in domain cleanup XSA-233, CVE-2017-14317 insufficient grant unmapping checks for x86 PV guests XSA-234, CVE-2017-14319 Note that...

8.8CVSS6.5AI score0.00422EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/09/22 12:0 a.m.33 views

openSUSE Security Update : xen (openSUSE-2017-1080)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-14316: Missing bound check in function allocheappages for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen XSA-231, bsc1056278 - CVE-2017-14318: The function...

8.8CVSS6.8AI score0.00422EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2017/09/19 12:0 a.m.47 views

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2017:2519-1)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-14316: Missing bound check in function allocheappages for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen XSA-231, bsc1056278 - CVE-2017-14318: The function...

8.8CVSS6.8AI score0.00422EPSS
Exploits0References15
OPENSUSE Linux
OPENSUSE Linux
added 2017/09/18 12:10 a.m.88 views

Security update for xen (important)

This update for xen fixes several issues. These security issues were fixed: - CVE-2017-14316: Missing bound check in function allocheappages for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen XSA-231, bsc1056278 - CVE-2017-14318: The function...

1AI score0.00422EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2017/09/18 12:0 a.m.26 views

openSUSE Security Update : xen (openSUSE-2017-1071)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-14316: Missing bound check in function allocheappages for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen XSA-231, bsc1056278 - CVE-2017-14318: The function...

8.8CVSS6.9AI score0.00422EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2017/09/18 12:0 a.m.31 views

Fedora 26 : xen (2017-e399a9008c)

xen: various flaws 1490884 Missing NUMA node parameter verification XSA-231, CVE-2017-14316 Missing check for grant table XSA-232, CVE-2017-14318 cxenstored: Race in domain cleanup XSA-233, CVE-2017-14317 insufficient grant unmapping checks for x86 PV guests XSA-234, CVE-2017-14319 ---- update to...

8.8CVSS6.5AI score0.00422EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/09/15 12:0 a.m.32 views

SUSE SLES12 Security Update : xen (SUSE-SU-2017:2466-1)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-14316: Missing bound check in function allocheappages for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen XSA-231, bsc1056278 - CVE-2017-14318: The function...

8.8CVSS6.8AI score0.00422EPSS
Exploits0References13
Citrix
Citrix
added 2017/09/14 4:0 a.m.53 views

Citrix XenServer Multiple Security Updates

Description of Problem A number of security vulnerabilities have been identified in Citrix XenServer that may allow a malicious administrator of a guest VM to compromise the host. These vulnerabilities affect all currently supported versions of Citrix XenServer up to and including Citrix XenServe...

8.8CVSS1.6AI score0.00422EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/09/13 12:0 a.m.29 views

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2017:2420-1)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-14316: Missing bound check in function allocheappages for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen XSA-231, bsc1056278 - CVE-2017-14318: The function...

8.8CVSS6.8AI score0.00422EPSS
Exploits0References16
OSV
OSV
added 2017/09/12 3:29 p.m.2 views

DEBIAN-CVE-2017-14318

An issue was discovered in Xen 4.5.x through 4.9.x. The function gnttabcacheflush handles GNTTABOPcacheflush grant table operations. It checks to see if the calling domain is the owner of the page that is to be operated on. If it is not, the owner's grant table is checked to see if a grant mappin...

6.5CVSS7.2AI score0.00422EPSS
Exploits0References1
CVE
CVE
added 2017/09/12 3:0 p.m.80 views

CVE-2017-14318

CVE-2017-14318 affects Xen 4.5.x–4.9.x. The vulnerability arises in __gnttab_cache_flush: when operating on a page owned by special domains (DOMID_XEN/IO/COW) that lack a grant table, the code may dereference a NULL pointer since it does not verify the owner’s grant table existence. This can enab...

6.5CVSS7.1AI score0.00422EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder