USN-4157-1: Linux kernel vulnerabilities

Wen Huang discovered that the Marvell Wi-Fi device driver in the Linux kernel did not properly perform bounds checking, leading to a heap overflow. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2019-14814, CVE-2019-14815,...

Ubuntu 19.04 : Linux kernel vulnerabilities (USN-4157-1)

Wen Huang discovered that the Marvell Wi-Fi device driver in the Linux kernel did not properly perform bounds checking, leading to a heap overflow. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2019-14814, CVE-2019-14815,...

The vulnerability of Xen hypervisors, related to errors in number processing, allows attackers to gain unauthorized access to information.

The vulnerability of Xen hypervisors is related to an error in number processing. Exploiting this vulnerability can allow an attacker to gain unauthorized access to information...

Errors testing new connector to CHv 8 - "Connection Error: A failure occurred connecting to Citrix Hypervisor. Error = write EPROTO 140247625111360:error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol"

When i try to configure a connector for this server on Citrix Hypervisor 8, if we check "Use Secured Communications", we get the error "Failed to connect to the server at ...". If we uncheck "Use Secured Communications" and "Ignore Certificate Errors", we can configure the connector. In the file...

NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0200)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has kernel packages installed that are affected by multiple vulnerabilities: - An information disclosure vulnerability exists when certain central processing units CPU speculatively access memory, aka 'Windows Kernel Informatio...

NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0180)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has kernel packages installed that are affected by multiple vulnerabilities: - A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current...

openSUSE Security Update : the Linux Kernel (openSUSE-2019-2308)

The openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2019-15291: There was a NULL pointer dereference caused by a malicious USB device in the flexcopusbprobe function in the drivers/media/usb/b2c2/flexcop-usb.c driver...

Debian DLA-1949-1 : xen security update

Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in denial of service, informations leaks or privilege escalation. For Debian 8 'Jessie', these problems have been fixed in version 4.4.4lts5-0+deb8u1. We recommend that you upgrade your xen packages. NOTE:...

[SECURITY] [DLA 1949-1] xen security update

Package : xen Version : 4.4.4lts5-0+deb8u1 CVE ID : CVE-2018-19961 CVE-2018-19962 CVE-2018-19966 XSA ID : XSA-275 XSA-280 XSA-285 XSA-287 XSA-288 Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in denial of service, informations leaks or privilege escalatio...

DEBIAN-CVE-2019-17342

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEMexchange was introduced...

ALPINE-CVE-2019-17345

An issue was discovered in Xen 4.8.x through 4.11.x allowing x86 PV guest OS users to cause a denial of service because mishandling of failed IOMMU operations causes a bug check during the cleanup of a crashed guest...

DEBIAN-CVE-2019-17341

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a page-writability race condition during addition of a passed-through PCI device...

CVE-2019-17349

An issue was discovered in Xen through 4.12.x allowing Arm domU attackers to cause a denial of service infinite loop involving a LoadExcl or StoreExcl operation...

Xen Denial of Service Vulnerability (CNVD-2019-34766)

Xen is an open source virtual machine monitor product. Xen has a denial of service vulnerability that can be exploited by attackers to cause a denial of service infinite loop...

Xen Denial of Service Vulnerability (CNVD-2019-34765)

Xen is an open source virtual machine monitor product. Xen has a denial of service vulnerability that can be exploited by attackers to cause a denial of service infinite loop...

Xen Denial of Service Vulnerability (CNVD-2019-34767)

Xen is an open source virtual machine monitor product. Xen has a denial of service vulnerability that can be exploited by x86 PV client OS attackers to cause a denial of service...

PT-2019-5146 · Xen · Xen

Name of the Vulnerable Software and Affected Versions: Xen versions prior to 4.13 Description: An issue in Xen allows Arm domU attackers to cause a denial of service through an infinite loop involving a compare-and-exchange operation. This can be exploited to disrupt service. Recommendations: For...

PT-2019-5144 · Xen +1 · Xen +1

Name of the Vulnerable Software and Affected Versions: Xen versions prior to 4.11.x Description: The issue is related to an incompatibility between Process Context Identifiers PCID and shadow-pagetable switching, allowing x86 PV guest OS users to cause a denial of service. This is due to a lack o...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2019-4808)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4808 advisory. - floppy: fix out-of-bounds read in copybuffer Denis Efremov Orabug: 30318219 CVE-2019-14283 Tenable has extracted the preceding description block...

CVE-2019-14821

An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ring buffer 'struct kvmcoalescedmmio' object, wherein write indices 'ring-first' and 'ring-last'...