EUVD-2016-10187

Malware in sbrugna...

PT-2025-9046

Name of the Vulnerable Software and Affected Versions Xen affected versions not specified Description The issue is related to a potential deadlock when using VT-d and legacy PCI device pass-through, which can cause a Denial of Service DoS affecting the entire host. This occurs when certain kinds ...

PT-2025-27564

Name of the Vulnerable Software and Affected Versions: xen affected versions not specified Description: The issue allows an unprivileged guest to cause a hypervisor crash, resulting in a Denial of Service DoS of the entire host. This is due to incorrect stubs exception handling for flags recovery...

DSA-5836-1 xen - security update

Bulletin has no description...

RHSA-2016:2963 Red Hat Security Advisory: xen security update

Bulletin has no description...

RHSA-2015:1002 Red Hat Security Advisory: xen security update

Bulletin has no description...

RHSA-2013:0599 Red Hat Security Advisory: xen security update

Bulletin has no description...

RHSA-2012:1236 Red Hat Security Advisory: xen security update

Bulletin has no description...

CVE-2022-42335

x86 shadow paging arbitrary pointer dereference In environments where host assisted address translation is necessary but Hardware Assisted Paging HAP is unavailable, Xen will run guests in so called shadow mode. Due to too lax a check in one of the hypervisor routines used for shadow page handlin...

SUSE-SU-2022:1505-1 Security update for xen

This update for xen fixes the following issues: - CVE-2022-26356: Fixed potential race conditions in dirty memory tracking that could cause a denial of service in the host bsc1197423. - CVE-2022-26357: Fixed a potential race condition in memory cleanup for hosts using VT-d IOMMU hardware, which...

Buffer Overflow

xen has buffer overflow. The vulnerability exists due to the system allowing access to a discontinuous range...

DSA-4888-1 xen - security update

Bulletin has no description...

DSA-4769-1 xen - security update

Bulletin has no description...

SUSE-SU-2020:2171-1 Security update for xen

This update for xen fixes the following issues: - bsc1174543 - secure boot related fixes - bsc1163019 - CVE-2020-8608: Potential OOB access due to unsafe snprintf usages...

CVE-2016-4480

The guestwalktables function in arch/x86/mm/guestwalk.c in Xen 4.6.x and earlier does not properly handle the Page Size PS page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory...

CVE-2015-8554

Buffer overflow in hw/pt-msi.c in Xen 4.6.x and earlier, when using the qemu-xen-traditional aka qemu-dm device model, allows local x86 HVM guest administrators to gain privileges by leveraging a system with access to a passed-through MSI-X capable physical PCI device and MSI-X table entries,...

CVE-2016-2270

Xen 4.6.x and earlier allows local guest administrators to cause a denial of service host reboot via vectors related to multiple mappings of MMIO pages with different cachability settings...

CVE-2015-8340

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service deadlock or host crash via unspecified vectors, related to XENMEMexchange error handling...

CVE-2015-8339

The memoryexchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service host crash via unspecified vectors related to domain teardown...

CVE-2015-7311

libxl in Xen 4.1.x through 4.6.x does not properly handle the readonly flag on disks when using the qemu-xen device model, which allows local guest users to write to a read-only disk image...