Lucene search
K

197 matches found

Cvelist
Cvelist
added 2024/01/05 4:18 p.m.41 views

CVE-2023-34322 top-level shadow reference dropped too early for 64-bit PV guests

For migration as well as to work around kernels unaware of L1TF see XSA-273, PV guests may be run in shadow paging mode. Since Xen itself needs to be mapped when PV guests run, Xen and shadowed PV guests run directly the respective shadow page tables. For 64-bit PV guests this means running on th...

7.6AI score0.0023EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/01/05 4:18 p.m.21 views

CVE-2023-34322 top-level shadow reference dropped too early for 64-bit PV guests

For migration as well as to work around kernels unaware of L1TF see XSA-273, PV guests may be run in shadow paging mode. Since Xen itself needs to be mapped when PV guests run, Xen and shadowed PV guests run directly the respective shadow page tables. For 64-bit PV guests this means running on th...

6.7AI score0.0023EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/01/05 4:18 p.m.39 views

CVE-2023-34322

For migration as well as to work around kernels unaware of L1TF see XSA-273, PV guests may be run in shadow paging mode. Since Xen itself needs to be mapped when PV guests run, Xen and shadowed PV guests run directly the respective shadow page tables. For 64-bit PV guests this means running on th...

7.8CVSS5.2AI score0.0023EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/10/12 12:0 a.m.33 views

Fedora 37 : xen (2023-948136565a)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-948136565a advisory. arm32: The cache may not be properly cleaned/invalidated XSA-437, CVE-2023-34321 top-level shadow reference dropped too early for 64-bit PV guests...

7.8CVSS7.1AI score0.12405EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/09/30 12:0 a.m.25 views

SUSE SLES15 Security Update : xen (SUSE-SU-2023:3902-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3902-1 advisory. - CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero XSA-439 bsc1215474. - CVE-2023-34322: Fixed...

7.8CVSS7.1AI score0.12405EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2023/09/30 12:0 a.m.35 views

SUSE SLES15: xen / xen-devel / xen-libs / xen-tools / xen-tools-domU / etc (SUSE-SU-2023:3895-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3895-1 advisory. - CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero XSA-439 bsc1215474. - CVE-2023-34322: Fixed...

7.8CVSS7.1AI score0.12405EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2023/09/28 12:0 a.m.29 views

SUSE SLED15: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2023:3832-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3832-1 advisory. - CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero XSA-439...

7.8CVSS6.8AI score0.12405EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/09/20 11:26 p.m.6 views

SUSE CVE-2023-34322

For migration as well as to work around kernels unaware of L1TF see XSA-273, PV guests may be run in shadow paging mode. Since Xen itself needs to be mapped when PV guests run, Xen and shadowed PV guests run directly the respective shadow page tables. For 64-bit PV guests this means running on th...

7.5CVSS7.8AI score0.0023EPSS
Exploits0References20
Xen Project
Xen Project
added 2023/09/19 12:0 p.m.45 views

top-level shadow reference dropped too early for 64-bit PV guests

ISSUE DESCRIPTION For migration as well as to work around kernels unaware of L1TF see XSA-273, PV guests may be run in shadow paging mode. Since Xen itself needs to be mapped when PV guests run, Xen and shadowed PV guests run directly the respective shadow page tables. For 64-bit PV guests this...

7.8CVSS6.2AI score0.0023EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/06/20 12:0 a.m.30 views

SUSE SLED15: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2023:2535-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2535-1 advisory. Security fixes: - CVE-2022-42336: Fix an issue where guests configuring AMD Speculative Store...

7.8CVSS6.6AI score0.00264EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2023/05/20 12:0 a.m.51 views

AlmaLinux 8 : kernel (ALSA-2023:2951)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:2951 advisory. - Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage. CVE-2021-26341 - When sending...

8.8CVSS5.3AI score0.03763EPSS
Exploits17References39
Tenable Nessus
Tenable Nessus
added 2023/05/17 12:0 a.m.49 views

RHEL 8 : kernel (RHSA-2023:2951)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2951 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. The following packages have been upgraded to a later...

8.8CVSS7.3AI score0.03763EPSS
Exploits17References182
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.2 views

kernel: KVM: NULL pointer dereference in kvm_mmu_invpcid_gva

A flaw was found in KVM. With shadow paging enabled if INVPCID is executed with CR0.PG=0, the invlpg callback is not set, and the result is a NULL pointer dereference. This flaw allows a guest user to cause a kernel oops condition on the host, resulting in a denial of service...

6.9CVSS6.6AI score0.00318EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/16 8:43 a.m.7 views

kernel: KVM: NULL pointer dereference in kvm_mmu_invpcid_gva

A flaw was found in KVM. With shadow paging enabled if INVPCID is executed with CR0.PG=0, the invlpg callback is not set, and the result is a NULL pointer dereference. This flaw allows a guest user to cause a kernel oops condition on the host, resulting in a denial of service...

6.9CVSS6.6AI score0.00318EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/05/13 12:0 a.m.37 views

RHEL 9 : kernel-rt (RHSA-2023:2148)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2148 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

8.8CVSS7.4AI score0.03763EPSS
Exploits13References93
SUSE CVE
SUSE CVE
added 2023/05/10 1:57 a.m.3 views

SUSE CVE-2022-42335

x86 shadow paging arbitrary pointer dereference In environments where host assisted address translation is necessary but Hardware Assisted Paging HAP is unavailable, Xen will run guests in so called shadow mode. Due to too lax a check in one of the hypervisor routines used for shadow page handlin...

7.3CVSS7.4AI score0.00264EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.7 views

kernel: KVM: NULL pointer dereference in kvm_mmu_invpcid_gva

A flaw was found in KVM. With shadow paging enabled if INVPCID is executed with CR0.PG=0, the invlpg callback is not set, and the result is a NULL pointer dereference. This flaw allows a guest user to cause a kernel oops condition on the host, resulting in a denial of service...

6.9CVSS6.6AI score0.00318EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/09 10:1 a.m.8 views

kernel: KVM: NULL pointer dereference in kvm_mmu_invpcid_gva

A flaw was found in KVM. With shadow paging enabled if INVPCID is executed with CR0.PG=0, the invlpg callback is not set, and the result is a NULL pointer dereference. This flaw allows a guest user to cause a kernel oops condition on the host, resulting in a denial of service...

6.9CVSS6.6AI score0.00318EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/04/28 12:0 a.m.32 views

Fedora 38 : xen (2023-d28433ead1)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-d28433ead1 advisory. x86 shadow paging arbitrary pointer dereference XSA-430, CVE-2022-42335 Tenable has extracted the preceding description block directly from the Fedora securi...

7.8CVSS7.6AI score0.00264EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/04/25 1:15 p.m.4 views

CVE-2022-42335

x86 shadow paging arbitrary pointer dereference In environments where host assisted address translation is necessary but Hardware Assisted Paging HAP is unavailable, Xen will run guests in so called shadow mode. Due to too lax a check in one of the hypervisor routines used for shadow page handlin...

7.8CVSS5.9AI score0.00264EPSS
Exploits0References7
Rows per page
Query Builder