Linux Distros Unpatched Vulnerability : CVE-2017-8903

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xen through 4.8.x on 64-bit platforms mishandles page tables after an IRET hypercall, which might allow PV guest OS users to execute arbitrary code on the host...

RHEL 5 : xsa213_xen (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - xsa213 xen: x86: 64bit PV guest breakout via pagetable use-after-mode-change XSA-213 CVE-2017-8903 Note that Nessus...

Debian: Security Advisory (DLA-964-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Citrix XenServer Multiple Security Updates (CTX223291)

A number of security issues have been identified within Citrix XenServer. These issues could, if exploited, allow a malicious administrator of a PV guest VM to compromise the host. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and a...

[SECURITY] [DLA 964-1] xen security update

Package : xen Version : 4.1.6.lts1-8 CVE ID : CVE-2016-9932 CVE-2017-7995 CVE-2017-8903 CVE-2017-8904 CVE-2017-8905 Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-9932 XSA-200...

Fedora 25 : xen (2017-5ae70ac6a5)

xen: various flaws 1447345 x86: 64bit PV guest breakout via pagetable use-after-mode-change XSA-213 grant transfer allows PV guest to elevate privileges XSA-214 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable...

Fedora Update for xen FEDORA-2017-c9d71f0860

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2017-8903

Xen through 4.8.x on 64-bit platforms mishandles page tables after an IRET hypercall, which might allow PV guest OS users to execute arbitrary code on the host OS, aka XSA-213...

CVE-2017-8903

CVE-2017-8903 affects Xen on 64-bit platforms (Xen through 4.8.x) where page tables are mishandled after an IRET hypercall. This could let a PV guest OS user execute arbitrary code on the host OS (XSA-213). Connected sources corroborate the body of the vulnerability (XSA-213) and describe the hos...