Lucene search
+L

19 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-8224

Malware in sbrugna...

4.7CVSS8.3AI score0.00383EPSS
Exploits0References11
susecve
susecve
added 2023/02/15 5:12 a.m.4 views

SUSE CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

4.7CVSS6.6AI score0.00383EPSS
Exploits0References12
susecve
susecve
added 2023/02/15 5:12 a.m.4 views

SUSE CVE-2015-8340

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service deadlock or host crash via unspecified vectors, related to XENMEMexchange error handling...

4.7CVSS8.3AI score0.00383EPSS
Exploits0References12
susecve
susecve
added 2023/02/15 4:7 a.m.4 views

SUSE CVE-2019-17342

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEMexchange was introduced...

7CVSS7.1AI score0.00258EPSS
Exploits0References11
osv
osv
added 2019/10/08 1:15 a.m.4 views

UBUNTU-CVE-2019-17342

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEMexchange was introduced...

7CVSS6.9AI score0.00258EPSS
Exploits0References3
cnvd
cnvd
added 2019/10/08 12:0 a.m.23 views

Xen Denial of Service Vulnerability (CNVD-2019-34762)

Xen is an open source virtual machine monitor product. Xen suffers from a denial-of-service vulnerability that stems from the presence of a race condition after the introduction of XENMEMexchange, which can be exploited by an x86 PV client OS attacker to cause a denial of service or gain privileg...

7CVSS8.8AI score0.00258EPSS
Exploits0References1
nessus
nessus
added 2017/10/25 12:0 a.m.19 views

OracleVM 3.2 : xen (OVMSA-2017-0159)

The remote OracleVM system is missing necessary patches to address critical security updates : - The code of OVM3.2.9 is quite old, there is no getpage/putpage pair to protect the ownership and references of page table page which is mapped in emulatemapdest. This patch fix it by adding getpage in...

5.8AI score
Exploits0References1
bdu_fstec
bdu_fstec
added 2017/06/30 12:0 a.m.5 views

The vulnerability of Xen hypervisors, allowing a attacker to gain access to the hypervisor’s memory

The vulnerability of Xen hypervisors known as XSA-212 is related to access control deficiencies. Exploiting this vulnerability could allow a malicious actor, operating locally, to gain access to the hypervisor’s memory beyond the guest system’s input/output arrays, given that XSA-29 previously...

7.2CVSS7.4AI score0.01569EPSS
Exploits2References6Affected Software1
opensuse
opensuse
added 2017/04/20 3:13 p.m.53 views

Security update for xen (important)

This update for xen to version 4.7.2 fixes the following issues: These security issues were fixed: - CVE-2017-7228: Broken check in memoryexchange permited PV guest breakout bsc1030442. - XSA-206: Unprivileged guests issuing writes to xenstore were able to stall progress of the control domain or...

7.2CVSS1.8AI score0.01569EPSS
Exploits2References10
nessus
nessus
added 2017/04/20 12:0 a.m.35 views

SUSE SLES11 Security Update : xen (SUSE-SU-2017:1058-1)

This update for xen fixes the following security issues : - CVE-2017-7228: Broken check in memoryexchange permited PV guest breakout bsc1030442. - CVE-2017-6414: Memory leak in the vcardapdunew function in card7816.c in libcacard allowed local guest OS users to cause a denial of service host memo...

8.2CVSS6.7AI score0.01569EPSS
Exploits2References10
nessus
nessus
added 2017/04/10 12:0 a.m.45 views

Fedora 25 : xen (2017-054729ab08)

Qemu: 9pfs: host memory leakage via v9fscreate CVE-2017-7377 1437873 x86: broken check in memoryexchange permits PV guest breakout XSA-212, CVE-2017-7228 1438804 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenabl...

8.2CVSS6.5AI score0.01569EPSS
Exploits2References3
osv
osv
added 2017/04/04 2:59 p.m.1 views

DEBIAN-CVE-2017-7228

An issue known as XSA-212 was discovered in Xen, with fixes available for 4.8.x, 4.7.x, 4.6.x, 4.5.x, and 4.4.x. The earlier XSA-29 fix introduced an insufficient check on XENMEMexchange input, allowing the caller to drive hypervisor memory accesses outside of the guest provided input/output arra...

8.2CVSS7.8AI score0.01569EPSS
Exploits2References1
osv
osv
added 2015/12/17 7:59 p.m.2 views

DEBIAN-CVE-2015-8340

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service deadlock or host crash via unspecified vectors, related to XENMEMexchange error handling...

4.7CVSS8.3AI score0.00383EPSS
Exploits0References1
nvd
nvd
added 2015/12/17 7:59 p.m.20 views

CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

4.7CVSS8.2AI score0.00383EPSS
Exploits0References6
osv
osv
added 2015/12/17 7:59 p.m.3 views

UBUNTU-CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

4.7CVSS7.2AI score0.00383EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2015/12/17 7:59 p.m.25 views

CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

4.7CVSS7.2AI score0.00383EPSS
Exploits0References2
cvelist
cvelist
added 2015/12/17 7:0 p.m.24 views

CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

8.2AI score0.00383EPSS
Exploits0References6
debiancve
debiancve
added 2015/12/17 7:0 p.m.23 views

CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

4.7CVSS8AI score0.00383EPSS
Exploits0
nessus
nessus
added 2013/04/04 12:0 a.m.35 views

SuSE 11.2 Security Update : Xen (SAT Patch Number 7492)

XEN has been updated to fix various bugs and security issues : - XSA 36 To avoid an erratum in early hardware, the Xen AMD IOMMU code by default choose to use a single interrupt remapping table for the whole system. This sharing implied that any guest with a passed through PCI device that is bus...

9.3CVSS7.6AI score0.04904EPSS
Exploits4References30
Rows per page
Query Builder