195 matches found
CVE-2017-10915
This CVE refers to Xen shadow-paging: through Xen up to 4.8.x, incorrect reference counting in shadow paging leads to a race that can let a guest OS user gain Xen privileges (XSA-219). The Debian DLA-1132 entry notes patching and fixes for related Xen issues, but does not specify exact patched ve...
CVE-2017-10915
The shadow-paging feature in Xen through 4.8.x mismanages page references and consequently introduces a race condition, which allows guest OS users to obtain Xen privileges, aka XSA-219...
Xen shadow-paging feature elevation of privilege vulnerability
Xen is an open source virtual machine monitor product developed at the University of Cambridge in the United Kingdom. A security vulnerability in the Xen shadow-paging feature allows an attacker to exploit the vulnerability to elevate privileges...
Xen Multiple Vulnerabilities (XSA-186, XSA-187)
According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by multiple vulnerabilities : - A flaw exists due to improper handling of instruction pointer truncation when emulating HVM instructions. An attacker on the guest can exploit this to gain...
CVE-2016-7094
Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update...
ALPINE-CVE-2016-7094
Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update...
DEBIAN-CVE-2016-7094
Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update...
UBUNTU-CVE-2016-7094
Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update...
Buffer overflow
Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update...
[SECURITY] [DSA 3663-1] xen security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3663-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 09, 2016 https://www.debian.org/security/faq -...
DSA-3663-1 xen - security update
Bulletin has no description...
x86 HVM: Overflow of sh_ctxt->seg_reg[]
ISSUE DESCRIPTION x86 HVM guests running with shadow paging use a subset of the x86 emulator to handle the guest writing to its own pagetables. There are situations a guest can provoke which result in exceeding the space allocated for internal state. IMPACT A malicious HVM guest administrator can...
xen-kernel -- x86 HVM: Overflow of sh_ctxt->seg_reg[]
The Xen Project reports: x86 HVM guests running with shadow paging use a subset of the x86 emulator to handle the guest writing to its own pagetables. There are situations a guest can provoke which result in exceeding the space allocated for internal state. A malicious HVM guest administrator can...
Xen 'paging_invlpg' function denial of service vulnerability
Xen is an open source virtual machine monitor product developed by the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in t...
DEBIAN-CVE-2016-1571
The paginginvlpg function in include/asm-x86/paging.h in Xen 3.3.x through 4.6.x, when using shadow mode paging or nested virtualization is enabled, allows local HVM guest users to cause a denial of service host crash via a non-canonical guest address in an INVVPID instruction, which triggers a...