19 matches found
PT-2026-4318
Name of the Vulnerable Software and Affected Versions QEMU affected versions not specified Description An error in QEMU’s KVM Xen guest support allows a malicious guest to cause out-of-bounds heap accesses within the QEMU process. This is triggered through the emulated Xen physdev hypercall...
EUVD-2017-7049
Malware in sbrugna...
EUVD-2019-7753
Malware in sbrugna...
EUVD-2018-19267
Malware in sbrugna...
EUVD-2012-5402
Malware in sbrugna...
EUVD-2019-9200
Malware in sbrugna...
EUVD-2020-18281
Malware in sbrugna...
EUVD-2017-16263
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2025-27465
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Certain instructions need intercepting and emulating by Xen. In some cases Xen emulates the instruction by replaying it, using an executable stub. Some...
Linux Distros Unpatched Vulnerability : CVE-2017-10912
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217. CVE-2017-10912 Note that Nessus relies...
Linux Distros Unpatched Vulnerability : CVE-2017-15589
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to obtain sensitive information from the host OS or an arbitrary guest OS because...
Linux Distros Unpatched Vulnerability : CVE-2018-7540
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS users to cause a denial of service host OS CPU hang via non-preemptable L3/L4 pagetable...
Linux Distros Unpatched Vulnerability : CVE-2017-15591
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen 4.5.x through 4.9.x allowing attackers who control a stub domain kernel or tool stack to cause a denial of service host OS crash...
Linux Distros Unpatched Vulnerability : CVE-2017-8905
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, which might allow PV guest OS users to execute arbitrary code on the host OS, aka XSA-215...
Linux Distros Unpatched Vulnerability : CVE-2018-19963
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen 4.11 allowing HVM guest OS users to cause a denial of service host OS crash or possibly gain host OS privileges because x86 IOREQ...
CVE-2020-25603
An issue was discovered in Xen through 4.14.x. There are missing memory barriers when accessing/allocating an event channel. Event channels control structures can be accessed lockless as long as the port is considered to be valid. Such a sequence is missing an appropriate memory barrier e.g., smp...
CVE-2018-15468
An issue was discovered in Xen through 4.11.x. The DEBUGCTL MSR contains several debugging features, some of which virtualise cleanly, but some do not. In particular, Branch Trace Store is not virtualised by the processor, and software has to be careful to configure it suitably not to lock up the...
CVE-2012-6075
Buffer overflow in the e1000receive function in the e1000 device driver hw/e1000.c in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service guest OS crash and possibly execute arbitrary guest code via a large packet...
Debian DSA-1809-1 : linux-2.6 - denial of service, privilege escalation
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-1630 Frank Filz discovered that local users may be able to execute files...