EUVD-2015-8223

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2015-8340

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a...

Xen - Broken Check in memory_exchange() Permits PV Guest Breakout Vulnerability

Exploit for multiple platform in category local exploits Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1184 This bug report describes a vulnerability in memoryexchange that permits PV guest kernels to write to an arbitrary virtual address with hypervisor privileges. The...

Xen - Broken Check in memory_exchange() Permits PV Guest Breakout

Xen - Broken Check in memoryexchange Permits PV Guest Breakout Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1184 This bug report describes a vulnerability in memoryexchange that permits PV guest kernels to write to an arbitrary virtual address with hypervisor privileges. The...

Xen - Broken Check in 'memory_exchange()' Permits PV Guest Breakout

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1184 This bug report describes a vulnerability in memoryexchange that permits PV guest kernels to write to an arbitrary virtual address with hypervisor privileges. The vulnerability was introduced through a broken fix for...

Xen: broken check in memory_exchange() permits PV guest breakout（CVE-2017-7228）

Detailed analysis: Pandavirtualization: Exploiting the Xen hypervisor This bug report describes a vulnerability in memoryexchange that permits PV guest kernels to write to an arbitrary virtual address with the hypervisor privileges. The vulnerability was introduced through a broken fix for...

FreeBSD : xen-kernel -- broken check in memory_exchange() permits PV guest breakout (90becf7c-1acf-11e7-970f-002590263bf5)

The Xen Project reports : The XSA-29 fix introduced an insufficient check on XENMEMexchange input, allowing the caller to drive hypervisor memory accesses outside of the guest provided input/output arrays. A malicious or buggy 64-bit PV guest may be able to access all of system memory, allowing f...

Xen 'memory_exchange' function denial of service vulnerability (CNVD-2015-08351)

Xen is an open source virtual machine monitor product developed at the University of Cambridge in the United Kingdom. The 'memoryexchange' function in the Xen common/memory.c file fails to properly handle the return page of a domain, allowing a local attacker to exploit this vulnerability to cras...

Xen 'memory_exchange' function denial of service vulnerability (CNVD-2015-08352)

Xen is an open source virtual machine monitor product developed at the University of Cambridge in the United Kingdom. The 'memoryexchange' function in the Xen common/memory.c file fails to properly unlock, allowing a local attacker to exploit this vulnerability to crash an application...

CVE-2015-8340

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service deadlock or host crash via unspecified vectors, related to XENMEMexchange error handling...

CVE-2015-8340

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service deadlock or host crash via unspecified vectors, related to XENMEMexchange error handling...

DEBIAN-CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

CVE-2015-8340

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service deadlock or host crash via unspecified vectors, related to XENMEMexchange error handling...

UBUNTU-CVE-2015-8340

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service deadlock or host crash via unspecified vectors, related to XENMEMexchange error handling...

CVE-2015-8340

CVE-2015-8340 affects Xen 3.2.x through 4.6.x. The memory_exchange function in common/memory.c does not properly release locks, which can allow guest OS administrators to cause a denial of service (host crash or deadlock) via XENMEM_exchange error handling. Public advisories (Debian DSA-3519, Deb...

CVE-2015-8340

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service deadlock or host crash via unspecified vectors, related to XENMEMexchange error handling...

Citrix XenServer Multiple memory_exchange() Hypercall Error Handling DoS (CTX203451)

The version of Citrix XenServer running on the remote host is affected by multiple denial of service vulnerabilities due to multiple flaws in the memoryexchange function in memory.c that are triggered when handling hypercall XENMEMexchange errors. A local attacker within a guest can exploit these...