19 matches found
EUVD-2013-4293
Malware in sbrugna...
EUVD-2015-4187
Malware in sbrugna...
libvirt security update
5.7.0-15.el7 - qemu: Escape the qemu driver systemd DOT hoax Wim ten Have Orabug: 31380815 5.7.0-14.el7 - vmx: make 'fileName' optional for CD-ROMs Pino Toscano Orabug: 31350200 - vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk Pino Toscano Orabug: 31350200 - domain group: Fix a...
CVE-2015-8555
Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors...
CVE-2015-8555
Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors...
Xen xenmem_add_to_physmap_one() printk rate limit denial of service vulnerability
Xen is an open source virtual machine. There is a problem with the printk rate limit in Xen xenmemaddtophysmapone, which allows Guest domains with partial administrative control and the ability to map other Guest domains to send large numbers of messages to the Xen console...
CVE-2015-4163
GNTTABOPswapgrantref in Xen 4.2 through 4.5 does not check the grant table operation version, which allows local guest domains to cause a denial of service NULL pointer dereference via a hypercall without a GNTTABOPsetuptable or GNTTABOPsetversion...
UBUNTU-CVE-2015-4163
GNTTABOPswapgrantref in Xen 4.2 through 4.5 does not check the grant table operation version, which allows local guest domains to cause a denial of service NULL pointer dereference via a hypercall without a GNTTABOPsetuptable or GNTTABOPsetversion...
CVE-2014-7154
Race condition in HVMOPtrackdirtyvram in Xen 4.0.0 through 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a denial of service via unspecified vectors...
CVE-2014-7154
Race condition in HVMOPtrackdirtyvram in Xen 4.0.0 through 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a denial of service via unspecified vectors...
CVE-2014-7154
Race condition in HVMOPtrackdirtyvram in Xen 4.0.0 through 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a denial of service via unspecified vectors...
Xen 3.3 XenStore Domain Configuration Data Unsafe Storage Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31499/info Xen is prone to a vulnerability that results in configuration information being stored in a location that is writable by guest domains. UPDATE December 19, 2008: The initial proposed patches did not resolve thi...
CVE-2013-4416
The Ocaml xenstored implementation oxenstored in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service domain shutdown via a large message reply...
GLSA-201309-24 : Xen: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201309-24 Xen: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact : Guest domains could possibly gain privileges, execute arbitrary...
Xen: Multiple vulnerabilities
Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact Guest domains could possibly gain privileges, execute arbitrary code, or cause a Denial of Service on the host domain...
CVE-2013-1952
Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, does not properly check the source when accessing a bridge device's interrupt remapping table entries for MSI interrupts, which allows local guest domains to cause a denial of service interrupt injection via unspecified vector...
Xen 3.3 - XenStore Domain Configuration Data Unsafe Storage
Xen 3.3 - XenStore Domain Configuration Data Unsafe Storage source: https://www.securityfocus.com/bid/31499/info Xen is prone to a vulnerability that results in configuration information being stored in a location that is writable by guest domains. UPDATE December 19, 2008: The initial proposed...
Xen 3.3 - XenStore Domain Configuration Data Unsafe Storage
source: https://www.securityfocus.com/bid/31499/info Xen is prone to a vulnerability that results in configuration information being stored in a location that is writable by guest domains. UPDATE December 19, 2008: The initial proposed patches did not resolve this issue. Xen 3.3 is vulnerable;...
RHEL 5 : xen (RHSA-2007:0323)
An updated Xen package to fix multiple security issues is now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Xen package contains the tools for managing the virtual machine monitor in Red Hat...