Lucene search
K

13 matches found

OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2023:0845-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS6.4AI score0.01189EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2023:0847-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS6.4AI score0.01189EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2023:0862-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS6.4AI score0.01189EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2023:0858-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS6.4AI score0.01189EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2023:0859-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS6.4AI score0.01189EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2023:0846-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.2AI score0.00273EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/03/26 12:0 a.m.36 views

Debian DSA-5378-1 : xen - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5378 advisory. - IBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leading to a potential information disclosure. CVE-2022-23824 -...

8.6CVSS7.2AI score0.01189EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2023/03/22 12:0 a.m.36 views

SUSE SLED15: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2023:0848-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0848-1 advisory. - CVE-2022-42332: Fixed use-after-free in x86 shadow plus log-dirty mode bsc1209017. -...

8.6CVSS6.8AI score0.01189EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2023/03/22 12:0 a.m.29 views

SUSE SLES15: xen / xen-devel / xen-libs / xen-tools / xen-tools-domU / etc (SUSE-SU-2023:0847-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0847-1 advisory. - CVE-2022-42332: Fixed use-after-free in x86 shadow plus log-dirty mode bsc1209017. - CVE-2022-42333,CVE-2022-42334: Fixed x86/HVM...

8.6CVSS6.8AI score0.01189EPSS
Exploits0References13
OSV
OSV
added 2023/03/21 1:15 p.m.24 views

CVE-2022-42332

x86 shadow plus log-dirty mode use-after-free In environments where host assisted address translation is necessary but Hardware Assisted Paging HAP is unavailable, Xen will run guests in so called shadow mode. Shadow mode maintains a pool of memory used for both shadow page tables as well as...

7.8CVSS7AI score
Exploits0References7
AlpineLinux
AlpineLinux
added 2023/03/21 1:15 p.m.28 views

CVE-2022-42332

x86 shadow plus log-dirty mode use-after-free In environments where host assisted address translation is necessary but Hardware Assisted Paging HAP is unavailable, Xen will run guests in so called shadow mode. Shadow mode maintains a pool of memory used for both shadow page tables as well as...

7.8CVSS8.2AI score0.00268EPSS
Exploits0
OSV
OSV
added 2023/03/21 12:28 p.m.9 views

SUSE-SU-2023:0847-1 Security update for xen

This update for xen fixes the following issues: - CVE-2022-42332: Fixed use-after-free in x86 shadow plus log-dirty mode bsc1209017. - CVE-2022-42333,CVE-2022-42334: Fixed x86/HVM pinned cache attributes mis-handling bsc1209018. - CVE-2022-42331: Fixed speculative vulnerability in 32bit SYSCALL...

8.6CVSS6.7AI score0.01189EPSS
Exploits0References9
CVE
CVE
added 2023/03/21 12:0 a.m.89 views

CVE-2022-42332

CVE-2022-42332 concerns Xen’s shadow mode with log-dirty tracking. In environments where host-assisted addressing is needed but Hardware Assisted Paging is unavailable, Xen’s log-dirty infrastructure did not have memory accounted for in some paths, allowing newly established shadow page tables to...

7.8CVSS7.9AI score0.00268EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder