The vulnerability of the grant-table component in the Xen hypervisor allows a attacker to trigger a service failure or gain privileged access to the host.

The vulnerability of the grant-table component in the Xen hypervisor is related to deficiencies in access control for GNTMAPdevicemap and GNTMAPhostmap. Exploiting this vulnerability could allow a malicious actor to trigger a service failure memory corruption or gain privileged access to the host...

The vulnerability of Xen hypervisors allows a attacker to trigger a service failure or gain privileged access to the host.

The vulnerability of Xen hypervisors is related to deficiencies in access control for GNTMAPdevicemap and GNTMAPhostmap provided that GNTMAPhostmap is in the unmapping mode. Exploiting this vulnerability can allow a malicious actor to cause a service failure memory corruption or gain privileged...

The vulnerability of Xen hypervisors allows a perpetrator to obtain confidential information or cause service failures.

The vulnerability of Xen hypervisors is related to insufficient checking of the ports accessed by the attackers. Exploiting this vulnerability can allow a remote attacker to cause service failures or obtain confidential information such as changing the zero pointer...

Virtuozzo 6 : spice-server / spice-server-devel (VZLSA-2017-0253)

An update for spice-server is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

[SECURITY] Fedora 25 Update: xen-4.7.2-7.fc25

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 26 Update: xen-4.8.1-4.fc26

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

The vulnerability of the Xen hypervisor, a platform for server virtualization called XenServer, allows a attacker to cause a service failure, obtain confidential information, or execute arbitrary code.

The vulnerability of the Xen hypervisor and the XenServer platform for server virtualization exists due to insufficient validation of input data. Exploiting this vulnerability can allow a guest user of the 86-bit operating system running locally to obtain confidential information, execute arbitra...

CVE-2017-10919

Xen through 4.8.x mishandles virtual interrupt injection, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-223...

Input validation

Xen through 4.8.x mishandles virtual interrupt injection, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-223...

CVE-2017-10923

Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-225...

DEBIAN-CVE-2017-10919

Xen through 4.8.x mishandles virtual interrupt injection, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-223...

ALPINE-CVE-2017-10912

Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...

ALPINE-CVE-2017-10919

Xen through 4.8.x mishandles virtual interrupt injection, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-223...

ALPINE-CVE-2017-10922

The grant-table feature in Xen through 4.8.x mishandles MMIO region grant references, which allows guest OS users to cause a denial of service loss of grant trackability, aka XSA-224 bug 3...

DEBIAN-CVE-2017-10918

Xen through 4.8.x does not validate memory allocations during certain P2M operations, which allows guest OS users to obtain privileged host OS access, aka XSA-222...

DEBIAN-CVE-2017-10923

Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-225...

ALPINE-CVE-2017-10923

Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-225...

UBUNTU-CVE-2017-10919

Xen through 4.8.x mishandles virtual interrupt injection, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-223...

UBUNTU-CVE-2017-10923

Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-225...

CVE-2017-10919

Xen through 4.8.x mishandles virtual interrupt injection, which allows guest OS users to cause a denial of service hypervisor crash, aka XSA-223...