Lucene search
K

347 matches found

FreeBSD
FreeBSD
added 2015/10/29 12:0 a.m.31 views

xen-kernel -- leak of main per-domain vcpu pointer array

The Xen Project reports: A domain's primary array of vcpu pointers can be allocated by a toolstack exactly once in the lifetime of a domain via the XENDOMCTLmaxvcpus hypercall. This array is leaked on domain teardown. This memory leak could -- over time -- exhaust the host's memory. A domain give...

4.9CVSS7.3AI score0.00436EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.240 views

Oracle: Security Advisory (ELSA-2015-0674)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.05489EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.28 views

Oracle: Security Advisory (ELSA-2012-0107)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.20492EPSS
Exploits11References2
Oracle linux
Oracle linux
added 2015/05/13 12:0 a.m.47 views

xen security update

3.0.3-146.el5 - xen-fdc-force-the-fifo-access-to-be-in-bounds-of-the-all.patch - xen-FDC-Fix-buffer-overflow-Herv-Poussineau.patch - Resolves: bz1219333 xen: qemu: floppy disk controller flaw rhel-5.11.z 3.0.3-144.el5 - xm: Fix vcpu-pin complain for CPU number out of range rhbz 955656 - libxc:...

7.7CVSS1AI score0.15275EPSS
Exploits1
Oracle linux
Oracle linux
added 2015/03/11 12:0 a.m.81 views

kernel security and bug fix update

2.6.32-504.12.2 - infiniband core: Prevent integer overflow in ibumemget address arithmetic Doug Ledford 1181173 1179327 CVE-2014-8159 2.6.32-504.12.1 - fs splice: perform generic write checks Eric Sandeen 1163798 1155900 CVE-2014-7822 2.6.32-504.11.1 - virt kvm: excessive pages un-pinning in...

7.2CVSS0.8AI score0.05489EPSS
Exploits3
Prion
Prion
added 2015/01/12 3:59 p.m.13 views

Design/Logic Flaw

The evtchnfifosetpending function in Xen 4.4.x allows local guest users to cause a denial of service host crash via vectors involving an uninitialized FIFO-based event channel control block when 1 binding or 2 moving an event to a different VCPU...

4.9CVSS6.7AI score0.00415EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2015/01/12 3:59 p.m.19 views

CVE-2014-6268

The evtchnfifosetpending function in Xen 4.4.x allows local guest users to cause a denial of service host crash via vectors involving an uninitialized FIFO-based event channel control block when 1 binding or 2 moving an event to a different VCPU...

4.9CVSS7.2AI score0.00415EPSS
Exploits0References2
NVD
NVD
added 2014/12/09 11:59 p.m.18 views

CVE-2014-9066

Xen 4.4.x and earlier, when using a large number of VCPUs, does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service write denial or NMI watchdog timeout and host crash via a large number of read requests, a different vulnerability than...

4.7CVSS8.1AI score0.00398EPSS
Exploits0References6
Prion
Prion
added 2014/12/09 11:59 p.m.23 views

Code injection

Xen 4.4.x and earlier, when using a large number of VCPUs, does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service write denial or NMI watchdog timeout and host crash via a large number of read requests, a different vulnerability than...

4.7CVSS6.3AI score0.00398EPSS
Exploits0References6Affected Software2
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.35 views

OracleVM 3.2 : xen (OVMSA-2013-0085)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/HVM: only allow ring 0 guest code to make hypercalls Anything else would allow for privilege escalation. This is CVE-2013-4554 / XSA-76. CVE-2013-4554 - x86: restrict XENDOMCTLgetmemlist Coverity ...

5.2CVSS7.6AI score0.0067EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.40 views

OracleVM 3.2 : xen (OVMSA-2013-0036)

The remote OracleVM system is missing necessary patches to address critical security updates : - VT-d: don't permit SVTNOVERIFY entries for known device types Only in cases where we don't know what to do we should leave the IRTE blank suppressing all validation, but we should always log a warning...

6.9CVSS7.8AI score0.00421EPSS
Exploits0References4
Xen Project
Xen Project
added 2014/09/09 12:30 p.m.65 views

Mishandling of uninitialised FIFO-based event channel control blocks

ISSUE DESCRIPTION When using the FIFO-based event channels, there are no checks for the existence of a control block when binding an event or moving it to a different VCPU. This is because events may be bound when the ABI is in 2-level mode e.g., by the toolstack before the domain is started. The...

4.9CVSS6.2AI score0.00415EPSS
Exploits0Affected Software1
CVE
CVE
added 2014/08/22 2:0 p.m.74 views

CVE-2014-5149

CVE-2014-5149 affects Xen 4.2.x–4.4.x when using shadow pagetables. Certain MMU virtualization operations are not preemptible, allowing a local HVM guest to trigger a denial of service by processing every page assigned to the guest (vcpu consumption). This is described as a different vulnerabilit...

4.7CVSS5.9AI score0.00428EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2014/08/22 2:0 p.m.72 views

CVE-2014-5146

CVE-2014-5146 affects Xen 4.2.x–4.4.x before the xsa97-hap patch. When using Hardware Assisted Paging (HAP), certain MMU virtualization ops are not preemptible, allowing a local HVM guest to trigger a DoS by consuming all vCPUs for pages assigned to the guest. It is described as a separate issue ...

4.7CVSS4.1AI score0.00428EPSS
Exploits0References9Affected Software1
OpenVAS
OpenVAS
added 2014/06/17 12:0 a.m.36 views

RedHat Update for qemu-kvm RHSA-2014:0743-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.05412EPSS
Exploits0References2
Cent OS
Cent OS
added 2014/06/11 11:37 a.m.81 views

qemu security update

CentOS Errata and Security Advisory CESA-2014:0743 Updated qemu-kvm packages that fix multiple security issues and two bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring...

8.8CVSS7.3AI score0.05412EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2014/06/02 12:0 a.m.27 views

CentOS Update for libvirt CESA-2014:0560 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

1.9CVSS7.1AI score0.0056EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/05/28 12:0 a.m.30 views

Scientific Linux Security Update : libvirt on SL6.x i386/x86_64 (20140527)

It was found that libvirt passes the XMLPARSENOENT flag when parsing XML documents using the libxml2 library, in which case all XML entities in the parsed documents are expanded. A user able to force libvirtd to parse an XML document with an entity pointing to a special file that blocks on read...

1.9CVSS6.8AI score0.0056EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/05/28 12:0 a.m.36 views

RHEL 6 : libvirt (RHSA-2014:0560)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:0560 advisory. The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition,...

1.9CVSS6.9AI score0.0056EPSS
Exploits0References8
OPENSUSE Linux
OPENSUSE Linux
added 2014/02/06 7:4 p.m.51 views

kernel: security and bugfix update (important)

The Linux kernel was updated to fix various bugs and security issues: - mm/page-writeback.c: do not count anon pages as dirtyable memory reclaim stalls. - mm/page-writeback.c: fix dirtybalancereserve subtraction from dirtyable memory reclaim stalls. - compatsysrecvmmsg X32 fix bnc860993...

7.2CVSS7.6AI score0.34649EPSS
Exploits27References28
Rows per page
Query Builder