Lucene search
Veracode Vulnerability DatabaseVERACODE:27223HistorySep 24, 2020 - 10:39 a.m.
Denial Of Service (DoS)
2020-09-2410:39:14
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.0004 Low
EPSS
Percentile
14.4%
xen is vulnerable to denial of service (DoS). The vulnerability exists as the PCI passthrough code improperly uses register data, causing code paths in Xen’s MSI handling to act on unsanitized values read back from device hardware registers.
References
lists.opensuse.org/opensuse-security-announce/2020-10/msg00008.html
lists.fedoraproject.org/archives/list/[email protected]/message/4JRXMKEMQRQYWYEPHVBIWUEAVQ3LU4FN/
lists.fedoraproject.org/archives/list/[email protected]/message/DA633Y3G5KX7MKRN4PFEGM3IVTJMBEOM/
lists.fedoraproject.org/archives/list/[email protected]/message/RJZERRBJN6E6STDCHT4JHP4MI6TKBCJE/
security.gentoo.org/glsa/202011-06
www.debian.org/security/2020/dsa-4769
xenbits.xen.org/xsa/advisory-337.html
Related
prion
prion
Privilege escalation
2020-09-23 21:15:00
osv
osv
CVE-2020-25595
2020-09-23 21:15:12
xen - security update
2020-10-02 00:00:00
xen vulnerabilities
2022-09-19 16:56:10
nessus
nessus
Xen PCI Passthrough Code Reading Back Hardware Registers DoS (XSA-337)
2020-09-25 00:00:00
SUSE SLES12 Security Update : xen (SUSE-SU-2020:2787-1)
2020-12-09 00:00:00
Debian DSA-4769-1 : xen - security update
2020-10-05 00:00:00
ubuntucve
ubuntucve
CVE-2020-25595
2020-09-23 00:00:00
nvd
nvd
CVE-2020-25595
2020-09-23 21:15:12
cve
cve
CVE-2020-25595
2020-09-23 21:15:12
cvelist
cvelist
CVE-2020-25595
2020-09-23 21:01:30
debiancve
debiancve
CVE-2020-25595
2020-09-23 21:15:12
xen
xen
PCI passthrough code reading back hardware registers
2020-09-22 12:00:00
redhatcve
redhatcve
CVE-2020-25595
2020-09-22 18:39:41
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:2787-1)
2021-04-19 00:00:00
Debian: Security Advisory (DSA-4769-1)
2020-10-03 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:2791-1)
2021-06-09 00:00:00
debian
debian
[SECURITY] [DSA 4769-1] xen security update
2020-10-02 17:16:19
suse
suse
Security update for xen (important)
2020-10-04 00:00:00
citrix
citrix
Citrix Hypervisor Security Update
2020-09-23 04:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: xen-4.13.1-6.fc32
2020-10-01 01:29:30
[SECURITY] Fedora 33 Update: xen-4.14.0-5.fc33
2020-09-27 00:19:37
[SECURITY] Fedora 31 Update: xen-4.12.3-5.fc31
2020-10-07 20:45:30
gentoo
gentoo
Xen: Multiple vulnerabilities
2020-11-11 00:00:00
ubuntu
ubuntu
Xen vulnerabilities
2022-09-19 00:00:00