Lucene search
+L

27 matches found

oraclelinux
oraclelinux
added 2019/08/14 12:0 a.m.226 views

kernel security and bug fix update

2.6.32-754.18.2.OL6 - Update genkey bug 25599697 2.6.32-754.18.2 - x86 x86/speculation: Enable Spectre v1 swapgs mitigations Waiman Long 1724512 CVE-2019-1125 - x86 x86/speculation: Prepare entry code for Spectre v1 swapgs mitigations Waiman Long 1724512 CVE-2019-1125 2.6.32-754.18.1 - virt xenbu...

7.8CVSS0.5AI score0.04521EPSS
Exploits5
nessus
nessus
added 2019/05/02 12:0 a.m.16 views

Fedora 30 : xen (2019-53b0dc52ee)

xen: various flaws 1685577 grant table transfer issues on large hosts XSA-284 race with pass-through device hotplug XSA-285 x86: stealpage violates pagestruct access discipline XSA-287 x86: Inconsistent PV IOMMU discipline XSA-288 missing preemption in x86 PV page table unvalidation XSA-290 x86/P...

5.5AI score
Exploits0References1
nessus
nessus
added 2019/03/25 12:0 a.m.43 views

Fedora 28 : xen (2019-bce6498890)

xen: various flaws 1685577 grant table transfer issues on large hosts XSA-284 race with pass-through device hotplug XSA-285 x86: stealpage violates pagestruct access discipline XSA-287 x86: Inconsistent PV IOMMU discipline XSA-288 missing preemption in x86 PV page table unvalidation XSA-290 x86/P...

8.8CVSS6.8AI score0.00438EPSS
Exploits0References6
xen
xen
added 2019/03/05 12:0 p.m.189 views

x86: insufficient TLB flushing when using PCID

ISSUE DESCRIPTION Use of Process Context Identifiers PCID was introduced into Xen in order to improve performance after XSA-254 and in particular its Meltdown sub-issue. This enablement implied changes to the TLB flushing logic. The particular case of context switch to a vCPU of a PCID-enabled...

8.8CVSS0.2AI score0.00349EPSS
Exploits0
xen
xen
added 2019/03/05 12:0 p.m.167 views

x86 shadow: Insufficient TLB flushing when using PCID

ISSUE DESCRIPTION Use of Process Context Identifiers PCID was introduced into Xen in order to improve performance after XSA-254 and in particular its Meltdown sub-issue. This enablement implied changes to the TLB flushing logic. One aspect which was overlooked is the safety of switching between...

6.5CVSS0.5AI score0.00347EPSS
Exploits0
xen
xen
added 2018/11/20 12:0 p.m.478 views

x86: DoS from attempting to use INVPCID with a non-canonical addresses

ISSUE DESCRIPTION The INVPCID instruction raises GP0 if an attempt is made to invalidate a non-canonical address. Older flushing mechanisms such as INVLPG tolerate this without error, and perform no action. There is one guest accessible path in Xen where a non-canonical address was passed into th...

5.6CVSS0.8AI score0.84172EPSS
Exploits3Affected Software1
oraclelinux
oraclelinux
added 2018/01/09 12:0 a.m.104 views

Unbreakable Enterprise kernel security update

4.1.12-112.14.10 - x86/ia32: save and clear registers on syscall. Jamie Iles Orabug: 27355759 CVE-2017-5754 - x86/IBRS: Save current status of MSRIA32SPECCTRL Boris Ostrovsky Orabug: 27355887 - pti: Rename X86FEATUREKAISER to X86FEATUREPTI Pavel Tatashin Orabug: 27352353 CVE-2017-5754 - usb/core:...

5.6CVSS6.7AI score0.84172EPSS
Exploits10
Rows per page
Query Builder