Lucene search
K

19 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2017:1058-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7.7AI score0.01569EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2017:1081-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS7.9AI score0.04448EPSS
Exploits2References12
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2017:0983-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7.7AI score0.01569EPSS
Exploits2References13
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2017:1080-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS7.9AI score0.04448EPSS
Exploits2References12
OpenVAS
OpenVAS
added 2018/01/16 12:0 a.m.24 views

Debian: Security Advisory (DLA-907-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7AI score0.01569EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2017/05/10 12:0 a.m.54 views

Debian DSA-3847-1 : xen - security update

Jan Beulich and Jann Horn discovered multiple vulnerabilities in the Xen hypervisor, which may lead to privilege escalation, guest-to-host breakout, denial of service or information leaks. In additional to the CVE identifiers listed above, this update also addresses the vulnerabilities announced ...

8.2CVSS6.3AI score0.01569EPSS
Exploits2References6
Debian
Debian
added 2017/05/09 8:52 p.m.32 views

[SECURITY] [DSA 3847-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3847-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 09, 2017 https://www.debian.org/security/faq -...

8.2CVSS7.5AI score0.01569EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2017/04/24 12:0 a.m.44 views

Debian DLA-907-1 : xen security update

CVE-2017-7228 XSA-212 An insufficient check on XENMEMexchange may allow PV guests to access all of system memory. For Debian 7 'Wheezy', these problems have been fixed in version 4.1.6.lts1-6. We recommend that you upgrade your xen packages. NOTE: Tenable Network Security has extracted the...

8.2CVSS7.6AI score0.01569EPSS
Exploits2References3
Debian
Debian
added 2017/04/21 9:1 p.m.28 views

[SECURITY] [DLA 907-1] xen security update

Package : xen Version : 4.1.6.lts1-6 CVE ID : CVE-2017-7228 Debian Bug : 859560 CVE-2017-7228 XSA-212 An insufficient check on XENMEMexchange may allow PV guests to access all of system memory. For Debian 7 "Wheezy", these problems have been fixed in version 4.1.6.lts1-6. We recommend that you...

8.2CVSS7.3AI score0.01569EPSS
Exploits2
OpenVAS
OpenVAS
added 2017/04/21 12:0 a.m.34 views

openSUSE: Security Advisory for xen (openSUSE-SU-2017:1078-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.2CVSS6.8AI score0.01569EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2017/04/21 12:0 a.m.48 views

SUSE SLES12 Security Update : xen (SUSE-SU-2017:1080-1)

This update for xen fixes the following issues: These security issues were fixed : - CVE-2017-7228: Broken check in memoryexchange permited PV guest breakout bsc1030442. - XSA-206: Unprivileged guests issuing writes to xenstore were able to stall progress of the control domain or driver domain,...

9.9CVSS6.8AI score0.04448EPSS
Exploits2References20
Tenable Nessus
Tenable Nessus
added 2017/04/21 12:0 a.m.43 views

SUSE SLES11 Security Update : xen (SUSE-SU-2017:1081-1)

This update for xen fixes the following issues: These security issues were fixed : - CVE-2017-7228: Broken check in memoryexchange permited PV guest breakout bsc1030442. - XSA-206: Unprivileged guests issuing writes to xenstore were able to stall progress of the control domain or driver domain,...

9.9CVSS6.8AI score0.04448EPSS
Exploits2References20
OPENSUSE Linux
OPENSUSE Linux
added 2017/04/20 3:13 p.m.52 views

Security update for xen (important)

This update for xen to version 4.7.2 fixes the following issues: These security issues were fixed: - CVE-2017-7228: Broken check in memoryexchange permited PV guest breakout bsc1030442. - XSA-206: Unprivileged guests issuing writes to xenstore were able to stall progress of the control domain or...

7.2CVSS1.8AI score0.01569EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2017/04/12 12:0 a.m.57 views

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2017:0983-1)

This update for xen to version 4.7.2 fixes the following issues: These security issues were fixed : - CVE-2017-7228: Broken check in memoryexchange permited PV guest breakout bsc1030442. - XSA-206: Unprivileged guests issuing writes to xenstore were able to stall progress of the control domain or...

8.2CVSS6.8AI score0.01569EPSS
Exploits2References15
Circl
Circl
added 2017/04/11 12:0 a.m.26 views

CVE-2017-7228

creationtimestamp| type| source ---|---|--- 2017-04-11 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41870...

8.2CVSS6.7AI score0.01569EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2017/04/10 12:0 a.m.45 views

Fedora 25 : xen (2017-054729ab08)

Qemu: 9pfs: host memory leakage via v9fscreate CVE-2017-7377 1437873 x86: broken check in memoryexchange permits PV guest breakout XSA-212, CVE-2017-7228 1438804 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenabl...

8.2CVSS6.5AI score0.01569EPSS
Exploits2References3
seebug.org
seebug.org
added 2017/04/09 12:0 a.m.78 views

Xen: broken check in memory_exchange() permits PV guest breakout(CVE-2017-7228)

Detailed analysis: Pandavirtualization: Exploiting the Xen hypervisor This bug report describes a vulnerability in memoryexchange that permits PV guest kernels to write to an arbitrary virtual address with the hypervisor privileges. The vulnerability was introduced through a broken fix for...

7.2CVSS7AI score0.01569EPSS
Exploits4
OSV
OSV
added 2017/04/04 2:59 p.m.2 views

UBUNTU-CVE-2017-7228

An issue known as XSA-212 was discovered in Xen, with fixes available for 4.8.x, 4.7.x, 4.6.x, 4.5.x, and 4.4.x. The earlier XSA-29 fix introduced an insufficient check on XENMEMexchange input, allowing the caller to drive hypervisor memory accesses outside of the guest provided input/output arra...

8.2CVSS7.2AI score0.01569EPSS
Exploits2References4
CVE
CVE
added 2017/04/04 2:0 p.m.92 views

CVE-2017-7228

CVE-2017-7228 refers to an XSA-212 issue in the Xen hypervisor. The root cause is an insufficient check in the XENMEM_exchange input introduced by the XSA-29 fix, which can permit a PV guest to drive hypervisor memory accesses outside of the guest-provided input/output arrays. Affected Xen branch...

8.2CVSS6.3AI score0.01569EPSS
Exploits2References8Affected Software1
Rows per page
Query Builder