Lucene search
K

282 matches found

Debian CVE
Debian CVE
added 2016/06/27 10:0 a.m.58 views

CVE-2016-5728

Race condition in the vopioctl function in drivers/misc/mic/vop/vopvringh.c in the MIC VOP driver in the Linux kernel before 4.6.1 allows local users to obtain sensitive information from kernel memory or cause a denial of service memory corruption and system crash by changing a certain header, ak...

6.3CVSS6.8AI score0.00404EPSS
Exploits0
OSV
OSV
added 2016/06/27 12:0 a.m.8 views

UBUNTU-CVE-2016-5728

Race condition in the vopioctl function in drivers/misc/mic/vop/vopvringh.c in the MIC VOP driver in the Linux kernel before 4.6.1 allows local users to obtain sensitive information from kernel memory or cause a denial of service memory corruption and system crash by changing a certain header, ak...

6.3CVSS6.8AI score0.00404EPSS
Exploits0References12
OSV
OSV
added 2016/04/14 2:59 p.m.1 views

DEBIAN-CVE-2015-8550

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service host OS crash or gain privileges by writing to memory shared between the frontend and backend, aka a double fetch vulnerability...

8.2CVSS7.6AI score0.0108EPSS
Exploits2References1
NVD
NVD
added 2016/04/14 2:59 p.m.27 views

CVE-2015-8550

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service host OS crash or gain privileges by writing to memory shared between the frontend and backend, aka a double fetch vulnerability...

8.2CVSS6.9AI score0.0108EPSS
Exploits2References11
Prion
Prion
added 2016/04/14 2:59 p.m.30 views

Double free

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service host OS crash or gain privileges by writing to memory shared between the frontend and backend, aka a double fetch vulnerability...

5.7CVSS6.9AI score0.0108EPSS
Exploits2References11Affected Software1
CVE
CVE
added 2016/04/14 2:0 p.m.187 views

CVE-2015-8550

CVE-2015-8550 is reported in Xen as a double-fetch vulnerability affecting systems using PV backends. The issue arises when memory is shared between the Xen frontend and backend, enabling local guest OS administrators to either crash the host OS (DoS) or gain privileges. The description consisten...

8.2CVSS6.4AI score0.0108EPSS
Exploits2References11Affected Software1
Cvelist
Cvelist
added 2016/04/14 2:0 p.m.40 views

CVE-2015-8550

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service host OS crash or gain privileges by writing to memory shared between the frontend and backend, aka a double fetch vulnerability...

6.7AI score0.0108EPSS
Exploits2References11
Debian CVE
Debian CVE
added 2016/04/14 2:0 p.m.56 views

CVE-2015-8550

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service host OS crash or gain privileges by writing to memory shared between the frontend and backend, aka a double fetch vulnerability...

8.2CVSS8.4AI score0.0108EPSS
Exploits2
OpenVAS
OpenVAS
added 2016/02/08 12:0 a.m.46 views

Debian Security Advisory DSA 3471-1 (qemu - security update)

Several vulnerabilities were discovered in qemu, a full virtualization solution on x86 hardware. CVE-2015-7295 Jason Wang of Red Hat Inc. discovered that the Virtual Network Device support is vulnerable to denial-of-service, that could occur when receiving large packets. CVE-2015-7504 Qinghao Tan...

9.3CVSS1AI score0.0773EPSS
Exploits4References1
OpenVAS
OpenVAS
added 2016/02/05 12:0 a.m.49 views

Ubuntu: Security Advisory (USN-2886-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7AI score0.0122EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2015/12/21 12:0 a.m.285 views

Ubuntu 15.10 : linux vulnerabilities (USN-2851-1)

Felix Wilhelm discovered a race condition in the Xen paravirtualized drivers which can cause double fetch vulnerabilities. An attacker in the paravirtualized guest could exploit this flaw to cause a denial of service crash the host or potentially execute arbitrary code on the host. CVE-2015-8550...

8.2CVSS7AI score0.0108EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2015/12/21 12:0 a.m.66 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-2854-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2854-1 advisory. Felix Wilhelm discovered a race condition in the Xen paravirtualized drivers which can cause double fetch vulnerabilities. An attacker in the...

8.2CVSS7.2AI score0.0108EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2015/12/21 12:0 a.m.51 views

Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-2848-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2848-1 advisory. Felix Wilhelm discovered a race condition in the Xen paravirtualized drivers which can cause double fetch vulnerabilities. An attacker in the...

8.2CVSS7.2AI score0.0108EPSS
Exploits2References5
Ubuntu
Ubuntu
added 2015/12/19 11:42 a.m.79 views

USN-2850-1: Linux kernel vulnerabilities

Felix Wilhelm discovered a race condition in the Xen paravirtualized drivers which can cause double fetch vulnerabilities. An attacker in the paravirtualized guest could exploit this flaw to cause a denial of service crash the host or potentially execute arbitrary code on the host. CVE-2015-8550...

8.2CVSS7.2AI score0.0108EPSS
Exploits2
OSV
OSV
added 2015/12/19 11:40 a.m.5 views

USN-2849-1 linux-lts-utopic vulnerabilities

Felix Wilhelm discovered a race condition in the Xen paravirtualized drivers which can cause double fetch vulnerabilities. An attacker in the paravirtualized guest could exploit this flaw to cause a denial of service crash the host or potentially execute arbitrary code on the host. CVE-2015-8550...

8.2CVSS7AI score0.0108EPSS
Exploits2References5
Xen Project
Xen Project
added 2015/12/17 12:0 p.m.122 views

paravirtualized drivers incautious about shared memory contents

ISSUE DESCRIPTION The compiler can emit optimizations in the PV backend drivers which can lead to double fetch vulnerabilities. Specifically the shared memory between the frontend and backend can be fetched twice during which time the frontend can alter the contents possibly leading to arbitrary...

8.2CVSS8.3AI score0.0108EPSS
Exploits2
OSV
OSV
added 2015/12/17 12:0 a.m.3 views

UBUNTU-CVE-2015-8550

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service host OS crash or gain privileges by writing to memory shared between the frontend and backend, aka a double fetch vulnerability...

8.2CVSS7.2AI score0.0108EPSS
Exploits2References13
UbuntuCve
UbuntuCve
added 2015/12/17 12:0 a.m.41 views

CVE-2015-8550

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service host OS crash or gain privileges by writing to memory shared between the frontend and backend, aka a double fetch vulnerability...

8.2CVSS7.2AI score0.0108EPSS
Exploits2References12
NVD
NVD
added 2014/08/12 9:55 p.m.27 views

CVE-2014-1819

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly control access to objects associated with font...

7.2CVSS6.3AI score0.02024EPSS
Exploits0References3
CVE
CVE
added 2014/08/12 9:0 p.m.79 views

CVE-2014-1819

CVE-2014-1819 affects Windows kernel-mode font handling (win32k.sys) where access to font-file objects is not properly controlled, enabling local privilege escalation via a crafted font file. Connected docs corroborate font-file handling as the root cause and map to MS14-045 kernel-mode driver up...

7.2CVSS6.4AI score0.02024EPSS
Exploits0References3Affected Software9
Rows per page
Query Builder