Lucene search
+L

4 matches found

Tenable Nessus
Tenable Nessus
added 2022/10/26 12:0 a.m.37 views

SUSE SLED15: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2022:3727-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3727-1 advisory. Updated to version 4.16.2 bsc1027519: - CVE-2022-33746: Fixed DoS due to excessively long P2M po...

6.5CVSS6.5AI score0.00265EPSS
Exploits0References11
AlpineLinux
AlpineLinux
added 2022/10/11 1:15 p.m.78 views

CVE-2022-33748

lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call was inserted on an error handling path. While doing so, locking requirements were not paid attention to. As a result two cooperating guests granting each other transitive grants can cause locks to be...

5.6CVSS0.8AI score0.00247EPSS
Exploits0
CVE
CVE
added 2022/10/11 12:0 a.m.101 views

CVE-2022-33748

CVE-2022-33748 corresponds to a Xen/XenServer vulnerability where a missing cleanup call on an error path can cause lock order inversion during transitive grant copy handling (XSA-226). This can lead to nested locks acquired in opposite order between two cooperating guests, potentially causing CP...

5.6CVSS6.1AI score0.00247EPSS
Exploits0References8Affected Software1
Xen Project
Xen Project
added 2020/04/14 12:0 p.m.70 views

Bad continuation handling in GNTTABOP_copy

ISSUE DESCRIPTION Grant table operations are expected to return 0 for success, and a negative number for errors. The fix for CVE-2017-12135 / XSA-226 introduced a path through grant copy handling where success may be returned to the caller without any action taken. In particular the status fields...

8.8CVSS1.2AI score0.00452EPSS
Exploits0
Rows per page
Query Builder