Lucene search
+L

369 matches found

cve
cve
added 2017/10/17 6:0 p.m.141 views

CVE-2017-15537

The CVE-2017-15537 issue affects the x86 FPU state handling in the Linux kernel prior to 4.13.5. If a CPU supports xsave but not xsaves, ptrace() or rt_sigreturn() mishandles reserved xstate header bits, enabling local users to read other processes’ FPU registers. A fix is provided in Linux kerne...

5.5CVSS5.7AI score0.00398EPSS
Exploits0References4Affected Software1
ubuntucve
ubuntucve
added 2017/10/17 12:0 a.m.51 views

CVE-2017-15537

The x86/fpu Floating Point Unit subsystem in the Linux kernel before 4.13.5, when a processor supports the xsave feature but not the xsaves feature, does not correctly handle attempts to set reserved bits in the xstate header via the ptrace or rtsigreturn system call, allowing local users to read...

5.5CVSS6.7AI score0.00398EPSS
Exploits0References7
zdt
zdt
added 2017/03/29 12:0 a.m.43 views

Vm86 - Syscall Task Switch Kernel Panic / Privilege Escalation Vulnerability

Exploit for linux platform in category local exploits Source: http://www.halfdog.net/Security/2013/Vm86SyscallTaskSwitchKernelPanic/ Introduction Problem description: The initial observation was, that the linux vm86 syscall, which allows to use the virtual-8086 mode from userspace for emulating o...

6.8AI score
Exploits0
openvas
openvas
added 2016/12/07 12:0 a.m.38 views

Debian Security Advisory DSA 3729-1 (xen - security update)

Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-7777 XSA-190 Jan Beulich from SUSE discovered that Xen does not properly honor CR0.TS and CR0.EM for x86 HVM guests, potentially allowi...

7.2CVSS0.5AI score0.00509EPSS
Exploits0References1
nessus
nessus
added 2016/11/04 12:0 a.m.45 views

Debian DLA-699-1 : xen security update

Xen does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it. For Debian 7 'Wheezy', thes...

6.3CVSS7.3AI score0.00303EPSS
Exploits0References3
osv
osv
added 2016/10/07 2:59 p.m.3 views

ALPINE-CVE-2016-7777

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it...

6.3CVSS6.2AI score0.00303EPSS
Exploits0References1
osv
osv
added 2016/10/07 2:59 p.m.9 views

CVE-2016-7777

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it...

6.3CVSS6.1AI score
Exploits0References5
prion
prion
added 2016/10/07 2:59 p.m.22 views

Information disclosure

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it...

3.3CVSS6.5AI score0.00303EPSS
Exploits0References5Affected Software1
ubuntucve
ubuntucve
added 2016/10/07 2:59 p.m.35 views

CVE-2016-7777

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it...

6.3CVSS7AI score0.00303EPSS
Exploits0References2
cvelist
cvelist
added 2016/10/07 2:0 p.m.30 views

CVE-2016-7777

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it...

6.2AI score0.00303EPSS
Exploits0References5
redhatcve
redhatcve
added 2016/10/04 1:17 p.m.33 views

CVE-2016-7777

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it...

6.3CVSS4.8AI score0.00303EPSS
Exploits0References2
nessus
nessus
added 2016/09/20 12:0 a.m.32 views

openSUSE Security Update : virtualbox (openSUSE-2016-1087)

Virtualbox was updated to 5.0.26 to fix the following issues : This update fixes various security issues. - CVE-2016-3612: An unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 5.0.22 allowed remote attackers to affect confidentiality via...

5.9CVSS6.4AI score0.0261EPSS
Exploits0References5
osv
osv
added 2016/04/13 4:59 p.m.3 views

DEBIAN-CVE-2016-3159

The fpufxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits...

3.8CVSS6.2AI score0.00399EPSS
Exploits0References1
osv
osv
added 2016/04/13 4:59 p.m.4 views

UBUNTU-CVE-2016-3159

The fpufxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits...

3.8CVSS6.7AI score0.00399EPSS
Exploits0References3
osv
osv
added 2016/04/13 3:59 p.m.7 views

CVE-2015-8555

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors...

8.6CVSS8.4AI score
Exploits0References8
nvd
nvd
added 2016/04/13 3:59 p.m.23 views

CVE-2015-8555

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors...

8.6CVSS8.1AI score0.02254EPSS
Exploits0References7
prion
prion
added 2016/04/13 3:59 p.m.21 views

Design/Logic Flaw

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors...

5CVSS6.1AI score0.02254EPSS
Exploits0References7Affected Software2
cvelist
cvelist
added 2016/04/13 3:0 p.m.32 views

CVE-2015-8555

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors...

8.1AI score0.02254EPSS
Exploits0References7
debiancve
debiancve
added 2016/04/13 3:0 p.m.48 views

CVE-2015-8555

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors...

8.6CVSS7.4AI score0.02254EPSS
Exploits0
nessus
nessus
added 2016/04/13 12:0 a.m.34 views

Fedora 22 : xen-4.5.3-1.fc22 (2016-5f196e4e4a)

update to 4.5.3 ---- broken AMD FPU FIP/FDP/FOP leak workaround XSA-172, CVE-2016-3158, CVE-2016-3159 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

3.8CVSS6.5AI score0.0041EPSS
Exploits0References4
Rows per page
Query Builder