14 matches found
CVE-2026-23558
The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race window, when a HVM or PVH guest does a grant table version change from v2 to v1 in parallel with mapping the status pages via XENMEMaddtophysmap. Some of the status pages may then be freed while...
Linux Distros Unpatched Vulnerability : CVE-2021-26932
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of...
SUSE CVE-2021-26932
An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall, the success or failure of each one is reported to the backend driver, and the backend driver then...
The vulnerability of the Xen supervisor tool, caused by synchronization errors when using a shared resource, allows a malicious actor to trigger a service failure.
The vulnerability of the PV virtualization mode implementation in Xen hypervisors arises due to synchronization errors when using a common resource. Exploiting this vulnerability can allow an attacker to cause a service failure...
PT-2022-4531 · Xen +5 · Xen +5
Name of the Vulnerable Software and Affected Versions: Xen affected versions not specified Description: The issue is caused by synchronization errors when using a shared resource in the Xen hypervisor's paravirtualization PV mode implementation. This can be exploited to cause a denial of service...
The vulnerability of the virtualization paravirtualization mode implementation in Xen hypervisors allows a malicious actor to gain unauthorized access to protected information.
The vulnerability of the PV mode implementation in Xen hypervisors relates to the use of the Indirect Branch Restricted Speculation IBRS mechanism for indirect branch control. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
OESA-2021-1111 kernel security update
The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc. Security Fixes: An issue was discovered in the Linux kernel 2.6.39...
PT-2021-3505 · Xen +2 · Xen +2
Name of the Vulnerable Software and Affected Versions: Xen affected versions not specified Description: The issue is related to the implementation of paravirtualization PV mode in the Xen hypervisor, specifically with the use of the Indirect Branch Restricted Speculation IBRS mechanism. This coul...
An issue was discovered in the Linux kernel 3.2 through 5.10.16 as used by Xen. Grant mapping operations often occur in batch hypercalls where a number of operations are done in a single hypercall the success or failure of each one is reported to the backend driver and the backend driver then loops over the results performing follow-up actions based on the success or failure of each operation. Unfortunately when running in PV mode the Linux backend drivers mishandle this: Some errors are ignored effectively implying their success from the success of related batch elements. In other cases errors resulting from one batch element lead to further batch elements not being inspected and hence successful ones to not be possible to properly unmap upon error recovery. Only systems with Linux backends running in PV mode are vulnerable. Linux backends run in HVM / PVH modes are not vulnerable. This affects arch/*/xen/p2m.c and drivers/xen/gntdev.c.
...
An issue was discovered in the Linux kernel 2.6.39 through 5.10.16 as used in Xen. Block net and SCSI backends consider certain errors a plain bug deliberately causing a kernel crash. For errors potentially being at least under the influence of guests (such as out of memory conditions) it isn't correct to assume a plain bug. Memory allocations potentially causing such crashes occur only when Linux is running in PV mode though. This affects drivers/block/xen-blkback/blkback.c and drivers/xen/xen-scsiback.c.
...
PT-2021-3001 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 3.2 through 5.10.16 Description: An issue was discovered in the Linux kernel, as used by Xen, where grant mapping operations in batch hypercalls are mishandled by Linux backend drivers when running in PV mode. This can...
The vulnerability of Xen hypervisors, related to uncontrolled resource consumption, allows attackers to cause service failures or increase their privileges.
The vulnerability of Xen hypervisors is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor, operating locally within the user account of the x86 operating system in a paravirtualization mode, to cause service interruptions unlimited...
The vulnerability of Xen hypervisors, related to errors in access rights comparison, allows attackers to increase their privileges or cause service failures.
The vulnerability of Xen hypervisors is related to access authorization errors that occur when permissions for guest x86 operating systems running in PV mode are removed or changed. Exploiting this vulnerability can allow a local attacker to increase their privileges or cause service failures...
Xen elevation of privilege vulnerability (CNVD-2016-05535)
Xen is an open source virtual machine monitor product developed at the University of Cambridge in the United Kingdom. There is a security vulnerability in Xen that can be exploited by PV-mode VM administrators to penetrate to the host system...