Xen gnttab_map_frame() Function Missing Mapping Check Upgrade Guest-to-host DoS (XSA-255)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability. Note that Nessus has checked the changeset versions based on the xen.git change log. Nessus did not check guest hardware configurations or if patches we...

Xen guest_remove_page() Function Pagetable Unpinning Handling Guest-to-host DoS (XSA-252)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability. Note that Nessus has checked the changeset versions based on the xen.git change log. Nessus did not check guest hardware configurations or if patches we...

Xen Denial of Service Vulnerability (CNVD-2018-04654)

Xen is an open source virtual machine monitor developed by the Xen Project. A denial of service vulnerability exists in 4.10.x and earlier versions of Xen. A guest operating system user can exploit this vulnerability to cause a denial of service hypervisor crash or gain privileges by triggering a...

Xen Denial of Service Vulnerability (CNVD-2018-04653)

Xen is an open source virtual machine monitor developed by the Xen Project. A denial of service vulnerability exists in Xen 4.8.x through 4.10.x. Users of the x86 PVH client operating system can exploit this vulnerability to cause a denial of service null pointer dereference and hypervisor crash ...

CVE-2018-7541

An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service hypervisor crash or gain privileges by triggering a grant-table transition from v2 to v1...

Code injection

An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service hypervisor crash or gain privileges by triggering a grant-table transition from v2 to v1...

CVE-2018-7542

An issue was discovered in Xen 4.8.x through 4.10.x allowing x86 PVH guest OS users to cause a denial of service NULL pointer dereference and hypervisor crash by leveraging the mishandling of configurations that lack a Local APIC...

CVE-2018-7542

An issue was discovered in Xen 4.8.x through 4.10.x allowing x86 PVH guest OS users to cause a denial of service NULL pointer dereference and hypervisor crash by leveraging the mishandling of configurations that lack a Local APIC...

ALPINE-CVE-2018-7541

An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service hypervisor crash or gain privileges by triggering a grant-table transition from v2 to v1...

CVE-2018-7541

An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service hypervisor crash or gain privileges by triggering a grant-table transition from v2 to v1...

UBUNTU-CVE-2018-7541

An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service hypervisor crash or gain privileges by triggering a grant-table transition from v2 to v1...

ALPINE-CVE-2018-7540

An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS users to cause a denial of service host OS CPU hang via non-preemptable L3/L4 pagetable freeing...

DEBIAN-CVE-2018-7541

An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service hypervisor crash or gain privileges by triggering a grant-table transition from v2 to v1...

CVE-2018-7542

Technical details (affected products/components, root cause, impact, and fixes) are not publicly provided in the supplied documents. Please monitor for updates from additional sources or vendor advisories to obtain concrete information.

x86 PVH guest without LAPIC may DoS the host

ISSUE DESCRIPTION So far, x86 PVH guests can be configured with or without Local APICs. Configurations with Local APICs are identical to x86 HVM guests, and will use as much hardware acceleration support as possible. Configurations without Local APICs try to turn off all hardware acceleration, an...

Xen Multiple Vulnerabilities (Spectre) (Meltdown) (XSA-254)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by multiple vulnerabilities. Note that Nessus has checked the changeset versions based on the xen.git change log. Nessus did not check guest hardware configurations or if patches were applie...

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2018:0472-1) (Meltdown) (Spectre)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-5753, CVE-2017-5715, CVE-2017-5754: Prevent information leaks via side effects of speculative execution, aka 'Spectre' and 'Meltdown' attacks bsc1074562, bsc1068032 - CVE-2017-15595: x86 PV guest OS users were...

How to assign VLANs to Targets created in PVS

This article explains the relationship between Networks and VLANs as it pertains to XenDesktop Hosting Units and PVS. The article also explains a workaround to be able to distribute Target Devices across desired VLANs The concept of VLAN IDs on the Hypervisor side is unknown to the XenDesktop...

[SECURITY] [DSA 4112-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4112-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 14, 2018 https://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-4112-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...