Lucene search
K

19 matches found

OpenVAS
OpenVAS
added 2022/11/29 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:4241-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.00375EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2022/11/18 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2022:4051-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.00375EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2022/11/17 12:0 a.m.39 views

SUSE SLED15: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2022:4007-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4007-1 advisory. - CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing bsc1203806. - CVE-2022-3374...

8.8CVSS6.8AI score0.00277EPSS
Exploits0References56
OpenVAS
OpenVAS
added 2022/11/15 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:3971-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.00375EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2022/11/13 12:0 a.m.27 views

SUSE SLES15 Security Update : xen (SUSE-SU-2022:3928-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3928-1 advisory. - CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing bsc1203806. - CVE-2022-33748: Fixed DoS due to race in locking...

8.8CVSS6.8AI score0.00494EPSS
Exploits3References63
OSV
OSV
added 2022/11/10 8:28 a.m.4 views

SUSE-SU-2022:3928-1 Security update for xen

This update for xen fixes the following issues: - CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing bsc1203806. - CVE-2022-33748: Fixed DoS due to race in locking bsc1203807. - CVE-2021-28689: Fixed speculative vulnerabilities with bare non-shim 32-bit PV guests bsc1185104. -...

8.8CVSS7.2AI score0.00494EPSS
Exploits3References39
OSV
OSV
added 2022/11/09 12:55 p.m.6 views

SUSE-SU-2022:3925-1 Security update for xen

This update for xen fixes the following issues: - CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing bsc1203806. - CVE-2022-33748: Fixed DoS due to race in locking bsc1203807. - CVE-2021-28689: Fixed speculative vulnerabilities with bare non-shim 32-bit PV guests bsc1185104. -...

8.8CVSS6.7AI score0.00375EPSS
Exploits0References33
Debian
Debian
added 2022/11/06 8:0 p.m.36 views

[SECURITY] [DSA 5272-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5272-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 06, 2022 https://www.debian.org/security/faq -...

8.8CVSS7.7AI score0.00289EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/10/26 12:0 a.m.39 views

SUSE: Security Advisory (SUSE-SU-2022:3728-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7AI score0.00375EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/10/26 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2022:3727-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.3AI score0.00265EPSS
Exploits0References2
OSV
OSV
added 2022/10/25 1:40 p.m.6 views

SUSE-SU-2022:3728-1 Security update for xen

This update for xen fixes the following issues: - CVE-2022-26365: Fixed issue where Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend bsc1200762. - CVE-2022-33740: Fixed issue where Linux Block and Network PV device frontends don't zero...

7.1CVSS6.8AI score0.00375EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2022/10/20 12:0 a.m.35 views

SUSE: Security Advisory (SUSE-SU-2022:3665-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.00375EPSS
Exploits0References2
OSV
OSV
added 2022/10/19 6:29 p.m.8 views

SUSE-SU-2022:3665-1 Security update for xen

This update for xen fixes the following issues: - CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing bsc1203806. - CVE-2022-33748: Fixed DoS due to race in locking bsc1203807. - CVE-2022-26365: Fixed issue where Linux Block and Network PV device frontends don't zero memory regions...

8.8CVSS7AI score0.00375EPSS
Exploits0References18
NVD
NVD
added 2022/10/11 1:15 p.m.23 views

CVE-2022-33748

lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call was inserted on an error handling path. While doing so, locking requirements were not paid attention to. As a result two cooperating guests granting each other transitive grants can cause locks to be...

5.6CVSS0.00247EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2022/10/11 1:15 p.m.34 views

CVE-2022-33748

lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call was inserted on an error handling path. While doing so, locking requirements were not paid attention to. As a result two cooperating guests granting each other transitive grants can cause locks to be...

5.6CVSS0.8AI score0.00247EPSS
Exploits0
Citrix
Citrix
added 2022/10/11 8:3 a.m.41 views

Citrix Hypervisor Security Bulletin for CVE-2022-33748 & CVE-2022-33749

Several security issues have been identified in Citrix Hypervisor 8.2 LTSR CU1. These are: A malicious privileged user in a guest VM working in collaboration with a malicious privileged user in another guest VM can cause the host to crash or become unresponsive. This issue has the following CVE...

5.6CVSS2.1AI score0.00877EPSS
Exploits0
Cvelist
Cvelist
added 2022/10/11 12:0 a.m.29 views

CVE-2022-33748

lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call was inserted on an error handling path. While doing so, locking requirements were not paid attention to. As a result two cooperating guests granting each other transitive grants can cause locks to be...

7AI score0.00247EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2022/10/11 12:0 a.m.131 views

CVE-2022-33748

lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call was inserted on an error handling path. While doing so, locking requirements were not paid attention to. As a result two cooperating guests granting each other transitive grants can cause locks to be...

5.6CVSS6.8AI score0.00247EPSS
Exploits0
CVE
CVE
added 2022/10/11 12:0 a.m.100 views

CVE-2022-33748

CVE-2022-33748 corresponds to a Xen/XenServer vulnerability where a missing cleanup call on an error path can cause lock order inversion during transitive grant copy handling (XSA-226). This can lead to nested locks acquired in opposite order between two cooperating guests, potentially causing CP...

5.6CVSS6.1AI score0.00247EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder