12 matches found
SUSE CVE-2017-10911
The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS or other guest OS kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structure...
Debian DLA-1099-1 : linux security update (BlueBorne) (Stack Clash)
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2017-7482 Shi Lei discovered that RxRPC Kerberos 5 ticket handling code does not properly verify metadata, leading to information disclosure, denia...
[SECURITY] [DSA 3945-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3945-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 17, 2017 https://www.debian.org/security/faq -...
Debian DSA-3927-1 : linux - security update (Stack Clash)
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. - CVE-2017-7346 Li Qiang discovered that the DRM driver for VMware virtual GPUs does not properly check user-controlled values in the...
Debian: Security Advisory (DSA-3927-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 26 : xen (2017-5c6a9b07a3)
xen: various flaws 1463247 blkif responses leak backend stack data XSA-216 page transfer may allow PV guest to elevate privilege XSA-217 Races in the grant table unmap code XSA-218 x86: insufficient reference counts during shadow emulation XSA-219 x86: PKRU and BND leakage between vCPU-s XSA-220...
Design/Logic Flaw
The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS or other guest OS kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structure...
CVE-2017-10911
The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS or other guest OS kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structure...
CVE-2017-10911
The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS or other guest OS kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structure...
CVE-2017-10911
Summary: CVE-2017-10911 affects the Linux kernel driver path drivers/block/xen-blkback/blkback.c, related to Xen block-interface responses (XSA-216). The vulnerability arises from copying uninitialized padding fields in Xen blkback response structures, which can let a guest OS user read host (or ...
Fedora 24 : xen (2017-b3bdaf58bc)
xen: various flaws 1463247 blkif responses leak backend stack data XSA-216 page transfer may allow PV guest to elevate privilege XSA-217 Races in the grant table unmap code XSA-218 x86: insufficient reference counts during shadow emulation XSA-219 x86: PKRU and BND leakage between vCPU-s XSA-220...
Fedora 25 : xen (2017-c3149b5fcb)
xen: various flaws 1463247 blkif responses leak backend stack data XSA-216 page transfer may allow PV guest to elevate privilege XSA-217 Races in the grant table unmap code XSA-218 x86: insufficient reference counts during shadow emulation XSA-219 x86: PKRU and BND leakage between vCPU-s XSA-220...