Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-8858

Malware in sbrugna...

7.1CVSS6AI score0.02197EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2015/05/20 12:0 a.m.45 views

SUSE SLES11 Security Update : xen (SUSE-SU-2014:1732-1)

xen was updated to fix 10 security issues : - Guest effectable page reference leak in MMUMACHPHYSUPDATE handling CVE-2014-9030. - Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor CVE-2014-8867. - Missing privilege level checks in x86 emulation of far branches...

7.1CVSS8.1AI score0.02221EPSS
Exploits0References29
Tenable Nessus
Tenable Nessus
added 2015/01/28 12:0 a.m.29 views

Debian DSA-3140-1 : xen - security update

Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation. - CVE-2014-8594 Roger Pau Monne and Jan Beulich discovered that incomplete restrictions on MMU update hypercalls may result in...

7.1CVSS8.1AI score0.02221EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2014/12/02 12:0 a.m.38 views

Fedora 20 : xen-4.3.3-5.fc20 (2014-15521)

Guest effectable page reference leak in MMUMACHPHYSUPDATE handling Insufficient restrictions on certain MMU update hypercalls, Missing privilege level checks in x86 emulation of far branches, Add fix for CVE-2014-0150 to qemu-dm, though it probably isn't exploitable from xen Note that Tenable...

7.1CVSS6.6AI score0.02221EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2014/12/02 12:0 a.m.43 views

Fedora 19 : xen-4.2.5-5.fc19 (2014-15503)

Guest effectable page reference leak in MMUMACHPHYSUPDATE handling Insufficient restrictions on certain MMU update hypercalls, Missing privilege level checks in x86 emulation of far branches, Add fix for CVE-2014-0150 to qemu-dm, though it probably isn't exploitable from xen Note that Tenable...

7.1CVSS6.6AI score0.02221EPSS
Exploits1References9
UbuntuCve
UbuntuCve
added 2014/11/24 3:59 p.m.31 views

CVE-2014-9030

The dommuupdate function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leveraging control over an HVM guest and a crafted MMUMACHPHYSUPDATE...

7.1CVSS5.9AI score0.02197EPSS
Exploits0References2
Prion
Prion
added 2014/11/24 3:59 p.m.26 views

Code injection

The dommuupdate function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leveraging control over an HVM guest and a crafted MMUMACHPHYSUPDATE...

7.1CVSS6.8AI score0.02197EPSS
Exploits0References8Affected Software3
Cvelist
Cvelist
added 2014/11/24 3:0 p.m.37 views

CVE-2014-9030

The dommuupdate function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leveraging control over an HVM guest and a crafted MMUMACHPHYSUPDATE...

6AI score0.02197EPSS
Exploits0References8
CVE
CVE
added 2014/11/24 3:0 p.m.71 views

CVE-2014-9030

Technical details about CVE-2014-9030 are not publicly provided in the supplied documents. Please monitor for updates from vendors and security advisories for affected Xen versions (3.2.x–4.4.x) and remediation.

7.1CVSS6.2AI score0.02197EPSS
Exploits0References8Affected Software1
Xen Project
Xen Project
added 2014/11/20 4:26 p.m.55 views

Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling

ISSUE DESCRIPTION An error handling path in the processing of MMUMACHPHYSUPDATE failed to drop a page reference which was acquired in an earlier processing step. IMPACT Malicious or buggy stub domain kernels or tool stacks otherwise living outside of Domain0 can mount a denial of service attack...

7.1CVSS6.2AI score0.02197EPSS
Exploits0Affected Software1
Rows per page
Query Builder