Lucene search
K

56 matches found

OSV
OSV
added 2018/05/11 5:58 p.m.7 views

SUSE-SU-2018:1240-1 Security update for the Linux Kernel (Live Patch 6 for SLE 12 SP3)

This update for the Linux Kernel 4.4.103-633 fixes several issues. The following security issues were fixed: - CVE-2018-1000199: A bug in x86 debug register handling of ptrace could lead to memory corruption, possibly a denial of service or privilege escalation bsc1090036. - CVE-2017-0861:...

7.8CVSS7.2AI score0.01221EPSS
Exploits0References5
OSV
OSV
added 2018/05/11 5:57 p.m.6 views

SUSE-SU-2018:1248-1 Security update for the Linux Kernel (Live Patch 3 for SLE 12 SP3)

This update for the Linux Kernel 4.4.82-69 fixes several issues. The following security issues were fixed: - CVE-2018-1000199: A bug in x86 debug register handling of ptrace could lead to memory corruption, possibly a denial of service or privilege escalation bsc1090036. - CVE-2017-0861:...

7.8CVSS7.2AI score0.01221EPSS
Exploits0References5
OSV
OSV
added 2018/05/11 5:51 p.m.4 views

SUSE-SU-2018:1232-1 Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP1)

This update for the Linux Kernel 3.12.74-606469 fixes several issues. The following security issues were fixed: - CVE-2018-1000199: A bug in x86 debug register handling of ptrace could lead to memory corruption, possibly a denial of service or privilege escalation bsc1090036. - CVE-2017-0861:...

7.8CVSS7.2AI score0.01221EPSS
Exploits0References5
OSV
OSV
added 2012/11/23 8:55 p.m.3 views

DEBIAN-CVE-2012-3494

The setdebugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest users to cause a denial of service host crash by writing to the reserved bits of the DR7 debug control register...

2.1CVSS8AI score0.00437EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.35 views

Scientific Linux Security Update : kvm on SL5.4 x86_64

CVE-2009-3722 KVM: Check cpl before emulating debug register access CVE-2010-0419 kvm: emulator privilege escalation segment selector check A flaw was found in the way the x86 emulator loaded segment selectors used for memory segmentation and protection into segment registers. In some guest syste...

7.1CVSS5.4AI score0.02277EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2010/10/08 12:0 a.m.34 views

Mandriva Linux Security Advisory : kernel (MDVSA-2010:198)

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : fs/namei.c in Linux kernel 2.6.18 through 2.6.34 does not always follow NFS automount symlinks, which allows attackers to have an unknown impact, related to LOOKUPFOLLOW. CVE-2010-1088 The tcfilltclass function in...

10CVSS7.5AI score0.21312EPSS
Exploits33References26
RedHat Linux
RedHat Linux
added 2010/03/24 3:46 p.m.5 views

KVM: Check cpl before emulating debug register access

The handledr function in arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 2.6.31.1 does not properly verify the Current Privilege Level CPL before accessing a debug register, which allows guest OS users to cause a denial of service trap on the host OS via a crafted application...

7.1CVSS5.8AI score0.02277EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2010/03/01 7:23 p.m.5 views

KVM: Check cpl before emulating debug register access

The handledr function in arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 2.6.31.1 does not properly verify the Current Privilege Level CPL before accessing a debug register, which allows guest OS users to cause a denial of service trap on the host OS via a crafted application...

7.1CVSS5.8AI score0.02277EPSS
Exploits1References4
NVD
NVD
added 2009/10/30 8:30 p.m.15 views

CVE-2009-3722

The handledr function in arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 2.6.31.1 does not properly verify the Current Privilege Level CPL before accessing a debug register, which allows guest OS users to cause a denial of service trap on the host OS via a crafted application...

7.1CVSS7AI score0.02277EPSS
Exploits1References12
UbuntuCve
UbuntuCve
added 2009/10/30 12:0 a.m.33 views

CVE-2009-3722

The handledr function in arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 2.6.31.1 does not properly verify the Current Privilege Level CPL before accessing a debug register, which allows guest OS users to cause a denial of service trap on the host OS via a crafted application...

7.1CVSS5.9AI score0.02277EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2009/10/30 12:0 a.m.4 views

PT-2009-5979 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.31.1 Description: The issue is related to the handle dr function in the KVM subsystem, which does not properly verify the Current Privilege Level CPL before accessing a debug register. This allows guest OS...

7.1CVSS5.8AI score0.02277EPSS
Exploits1References16
RedHat Linux
RedHat Linux
added 2008/05/21 12:0 a.m.2 views

kernel-xen 3.1.1 virtual guest system denial of service (hypervisor crash) possibility

Xen 3.1.1 allows virtual guest system users to cause a denial of service hypervisor crash by using a debug register DR7 to set certain breakpoints...

4.7CVSS5.8AI score0.00324EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2007/12/24 12:0 a.m.32 views

SuSE 10 Security Update : xen (ZYPP Patch Number 4766)

This update fixes various Xen issues. Two security problems were fixed: CVE-2007-5906: Xen allowed virtual guest system users to cause a denial of service hypervisor crash by using a debug register DR7 to set certain breakpoints. - Xen 3.1.1 does not prevent modification of the CR4 TSC from...

4.7CVSS5.3AI score0.00354EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2007/11/09 7:46 p.m.27 views

CVE-2007-5906

Xen 3.1.1 allows virtual guest system users to cause a denial of service hypervisor crash by using a debug register DR7 to set certain breakpoints...

4.7CVSS5.9AI score0.00324EPSS
Exploits0References1
NVD
NVD
added 2007/11/09 7:46 p.m.26 views

CVE-2007-5906

Xen 3.1.1 allows virtual guest system users to cause a denial of service hypervisor crash by using a debug register DR7 to set certain breakpoints...

4.7CVSS6.3AI score0.00324EPSS
Exploits0References7
CVE
CVE
added 2007/11/09 7:0 p.m.68 views

CVE-2007-5906

CVE-2007-5906 affects Xen 3.1.1 where a local-privilege user in a virtual guest can trigger a hypervisor crash by using a DR7 breakpoint, causing a denial of service. The issue is documented by SUSE and other vendors; remediation is to upgrade Xen to a fixed version (updates reference Xen 3.1.2 i...

4.7CVSS6.2AI score0.00324EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder