5604 matches found
Information disclosure
Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not clear the NT flag when using an IRET after a SYSENTER instruction, which allows PV guest users to cause a denial of service hypervisor crash by triggering a GP fault, which is not properly handled by another IRET instruction...
CVE-2013-1917
Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not clear the NT flag when using an IRET after a SYSENTER instruction, which allows PV guest users to cause a denial of service hypervisor crash by triggering a GP fault, which is not properly handled by another IRET instruction...
CVE-2013-1917
Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not clear the NT flag when using an IRET after a SYSENTER instruction, which allows PV guest users to cause a denial of service hypervisor crash by triggering a GP fault, which is not properly handled by another IRET instruction...
[SECURITY] [DSA 2666-1] xen security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2666-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 12, 2013 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2666-1 (xen - several vulnerabilities)
Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2013-1918 XSA 45 several long latency operations are not preemptible. Some page table manipulation operations for PV guests were not made...
DSA-2666-1 xen - several
Bulletin has no description...
[SECURITY] Fedora 19 Update: xen-4.2.2-3.fc19
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...
Fedora Update for xen FEDORA-2013-6723
Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2013-6723 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...
Fedora Update for xen FEDORA-2013-6641
Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2013-6641 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...
[SECURITY] Fedora 18 Update: xen-4.2.2-1.fc18
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...
[SECURITY] Fedora 17 Update: xen-4.1.5-1.fc17
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...
Important: Red Hat Security Advisory: rhev-hypervisor6 security and bug fix update
An updated rhev-hypervisor6 package that fixes several security issues and various bugs is now available. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
[SECURITY] [DSA 2662-1] xen security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2662-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 18, 2013 http://www.debian.org/security/faq -...
[SECURITY] Fedora 19 Update: xen-4.2.1-10.fc19
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...
Debian DSA-2662-1 : xen - several vulnerabilities
Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2013-1917 The SYSENTER instruction can be used by PV guests to accelerate system call processing. This instruction, however, leaves the...
[SECURITY] [DSA 2662-1] xen security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2662-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 18, 2013 http://www.debian.org/security/faq -...
CVE-2013-1919
Xen 4.2.x and 4.1.x does not properly restrict access to IRQs, which allows local stub domain clients to gain access to IRQs and cause a denial of service via vectors related to "passed-through IRQs or PCI devices."...
Xen PV DoS vulnerability with SYSENTER
ISSUE DESCRIPTION The SYSENTER instruction can be used by PV guests to accelerate system call processing. This instruction, however, leaves the EFLAGS register mostly unmodified - in particular, the NT flag doesn't get cleared. If the hypervisor subsequently uses IRET to return to the guest which...
Debian Security Advisory DSA 2662-1 (xen - several vulnerabilities)
Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2013-1917 The SYSENTER instruction can be used by PV guests to accelerate system call processing. This instruction, however, leaves the EFLA...
DSA-2662-1 xen - several
Bulletin has no description...