Lucene search
K

15 matches found

NVD
NVD
added 6 days ago5 views

CVE-2026-23556

When oxenstored is tearing a domain down, the node data is cleaned up but the usage counts are leaked. When the domain ID is eventually reused, the new domain can create fewer nodes before beeing deemed to be over quota...

9.4CVSS0.00137EPSS
Exploits0References3
Debian CVE
Debian CVE
added 6 days ago4 views

CVE-2026-23556

When oxenstored is tearing a domain down, the node data is cleaned up but the usage counts are leaked. When the domain ID is eventually reused, the new domain can create fewer nodes before beeing deemed to be over quota...

9.4CVSS5.9AI score0.00137EPSS
Exploits0
EUVD
EUVD
added 6 days ago5 views

EUVD-2026-42600

When oxenstored is tearing a domain down, the node data is cleaned up but the usage counts are leaked. When the domain ID is eventually reused, the new domain can create fewer nodes before beeing deemed to be over quota...

9.4CVSS5.9AI score0.00137EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-8223

Malware in sbrugna...

4.7CVSS8.3AI score0.00383EPSS
Exploits0References11
NVD
NVD
added 2025/08/19 5:15 p.m.16 views

CVE-2025-38594

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix UAF on sva unbind with pending IOPFs Commit 17fce9d2336d "iommu/vt-d: Put iopf enablement in domain attach path" disables IOPF on device by removing the device from its IOMMU's IOPF queue when the last IOPF-capabl...

7.8CVSS0.00143EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/19 5:3 p.m.22 views

CVE-2025-38594 iommu/vt-d: Fix UAF on sva unbind with pending IOPFs

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix UAF on sva unbind with pending IOPFs Commit 17fce9d2336d "iommu/vt-d: Put iopf enablement in domain attach path" disables IOPF on device by removing the device from its IOMMU's IOPF queue when the last IOPF-capabl...

0.00143EPSS
Exploits0References2
CVE
CVE
added 2025/08/19 5:3 p.m.27 views

CVE-2025-38594

CVE-2025-38594 pertains to the Linux kernel (iommu/vt-d) and fixes a use-after-free (UAF) in sva unbind with pending IOPFs. The root cause was a wrong removal of a device from the IOMMU IOPF queue when the last IOPF-capable domain detaches, occurring before intel_pasid_tear_down_entry() completed...

7.8CVSS7.1AI score0.00143EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:12 a.m.4 views

SUSE CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

4.7CVSS6.6AI score0.00383EPSS
Exploits0References12
OSV
OSV
added 2022/04/05 1:15 p.m.0 views

DEBIAN-CVE-2022-26356

Racy interactions between dirty vram tracking and paging log dirty hypercalls Activation of log dirty mode done by XENDMOPtrackdirtyvram was named HVMOPtrackdirtyvram before Xen 4.9 is racy with ongoing log dirty hypercalls. A suitably timed call to XENDMOPtrackdirtyvram can enable log dirty whil...

5.6CVSS6.4AI score0.00232EPSS
Exploits0References1
OSV
OSV
added 2015/12/17 7:59 p.m.9 views

CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

8.7AI score
Exploits0References6
OSV
OSV
added 2015/12/17 7:59 p.m.1 views

DEBIAN-CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

4.7CVSS8.3AI score0.00383EPSS
Exploits0References1
Prion
Prion
added 2015/12/17 7:59 p.m.26 views

Design/Logic Flaw

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

4.7CVSS6.8AI score0.00383EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2015/12/17 7:59 p.m.3 views

UBUNTU-CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

4.7CVSS7.2AI score0.00383EPSS
Exploits0References3
Cvelist
Cvelist
added 2015/12/17 7:0 p.m.24 views

CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

8.2AI score0.00383EPSS
Exploits0References6
FreeBSD
FreeBSD
added 2015/10/29 12:0 a.m.31 views

xen-kernel -- leak of main per-domain vcpu pointer array

The Xen Project reports: A domain's primary array of vcpu pointers can be allocated by a toolstack exactly once in the lifetime of a domain via the XENDOMCTLmaxvcpus hypercall. This array is leaked on domain teardown. This memory leak could -- over time -- exhaust the host's memory. A domain give...

4.9CVSS7.3AI score0.00436EPSS
Exploits0References1
Rows per page
Query Builder