CVSS: 6.5EPSS: 0%CPEs: 18EXPL: 0CVE-2017-15591 – Gentoo Linux Security Advisory 201801-14
https://notcve.org/view.php?id=CVE-2017-15591
18 Oct 2017 — An issue was discovered in Xen 4.5.x through 4.9.x allowing attackers (who control a stub domain kernel or tool stack) to cause a denial of service (host OS crash) because of a missing comparison (of range start to range end) within the DMOP map/unmap implementation. Se ha descubierto un problema en Xen desde las versiones 4.5.x hasta las versiones 4.9.x que permite que atacantes (que controlan un kernel de dominio de zona stub o una pila de herramientas) para provocar una denegación de servicio (cierre ine... • https://security.gentoo.org/glsa/201801-14 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-15594 – Gentoo Linux Security Advisory 201801-14
https://notcve.org/view.php?id=CVE-2017-15594
18 Oct 2017 — An issue was discovered in Xen through 4.9.x allowing x86 SVM PV guest OS users to cause a denial of service (hypervisor crash) or gain privileges because IDT settings are mishandled during CPU hotplugging. Se ha descubierto un problema en Xen hasta las versiones 4.9.x que permite que usuarios invitados del sistema operativo x86 SVM PV provoquen una denegación de servicio (cierre inesperado del hipervisor) o que puedan obtener privilegios debido a que se gestionó de manera incorrecta la configuración IDT du... • http://www.securitytracker.com/id/1039568 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-15595 – Xen - Pagetable De-typing Unbounded Recursion
https://notcve.org/view.php?id=CVE-2017-15595
18 Oct 2017 — An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (unbounded recursion, stack consumption, and hypervisor crash) or possibly gain privileges via crafted page-table stacking. Se ha descubierto un problema en Xen hasta las versiones 4.9.x que permite que usuarios invitados del sistema operativo x86 PV provoquen una denegación de servicio (recursión infinita consumo de pila y cierre inesperado del hipervisor) o que puedan obtener privilegios mediante el ap... • https://www.exploit-db.com/exploits/43014 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.0EPSS: 0%CPEs: 73EXPL: 0CVE-2017-15596
https://notcve.org/view.php?id=CVE-2017-15596
18 Oct 2017 — An issue was discovered in Xen 4.4.x through 4.9.x allowing ARM guest OS users to cause a denial of service (prevent physical CPU usage) because of lock mishandling upon detection of an add-to-physmap error. Se ha descubierto un problema en Xen desde las versiones 4.4.x hasta las versiones 4.9.x que permite que usuarios invitados del sistema operativo ARM provoquen una denegación de servicio (imposibilidad de emplear los recursos físicos de la CPU) debido a la gestión incorrecta de los bloqueos al detectars... • http://www.debian.org/security/2017/dsa-3969 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-15592 – Gentoo Linux Security Advisory 201801-14
https://notcve.org/view.php?id=CVE-2017-15592
18 Oct 2017 — An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because self-linear shadow mappings are mishandled for translated guests. Se ha descubierto un problema en Xen hasta las versiones 4.9.x que permite que usuarios invitados del sistema operativo x86 HMV provoquen una denegación de servicio (cierre inesperado del hipervisor) o que puedan obtener privilegios debido a que se gestiona de manera incorrecta los ma... • http://www.securityfocus.com/bid/101513 • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 5.5EPSS: 0%CPEs: 51EXPL: 0CVE-2017-14431
https://notcve.org/view.php?id=CVE-2017-14431
13 Sep 2017 — Memory leak in Xen 3.3 through 4.8.x allows guest OS users to cause a denial of service (ARM or x86 AMD host OS memory consumption) by continually rebooting, because certain cleanup is skipped if no pass-through device was ever assigned, aka XSA-207. Una vulnerabilidad de fuga de memoria en Xen desde la versión 3.3 hasta las 4.8.x permite que usuarios invitados del sistema operativo provoquen una denegación de servicio (consumo de memoria del sistema operativo host ARM o x86 AMD) debido a que se salta una s... • https://lists.debian.org/debian-lts-announce/2018/09/msg00006.html • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14316 – Debian Security Advisory 4050-1
https://notcve.org/view.php?id=CVE-2017-14316
12 Sep 2017 — A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array. Existe un problema de verific... • http://www.securityfocus.com/bid/100818 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14319 – Debian Security Advisory 4050-1
https://notcve.org/view.php?id=CVE-2017-14319
12 Sep 2017 — A grant unmapping issue was discovered in Xen through 4.9.x. When removing or replacing a grant mapping, the x86 PV specific path needs to make sure page table entries remain in sync with other accounting done. Although the identity of the page frame was validated correctly, neither the presence of the mapping nor page writability were taken into account. Se ha descubierto un problema de desasignación de concesión en Xen hasta la versión 4.9.x. Cuando se elimina o reemplaza una asignación de concesión, la r... • http://www.securityfocus.com/bid/100819 •
CVSS: 5.6EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14317 – Debian Security Advisory 4050-1
https://notcve.org/view.php?id=CVE-2017-14317
12 Sep 2017 — A domain cleanup issue was discovered in the C xenstore daemon (aka cxenstored) in Xen through 4.9.x. When shutting down a VM with a stubdomain, a race in cxenstored may cause a double-free. The xenstored daemon may crash, resulting in a DoS of any parts of the system relying on it (including domain creation / destruction, ballooning, device changes, etc.). Se ha descubierto un problema de limpieza de dominio en el demonio C xenstore (también conocido como cxenstored) en Xen hasta la versión 4.9.x. Cuando s... • http://www.securityfocus.com/bid/100826 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 6.5EPSS: 0%CPEs: 18EXPL: 0CVE-2017-14318 – Debian Security Advisory 4050-1
https://notcve.org/view.php?id=CVE-2017-14318
12 Sep 2017 — An issue was discovered in Xen 4.5.x through 4.9.x. The function `__gnttab_cache_flush` handles GNTTABOP_cache_flush grant table operations. It checks to see if the calling domain is the owner of the page that is to be operated on. If it is not, the owner's grant table is checked to see if a grant mapping to the calling domain exists for the page in question. However, the function does not check to see if the owning domain actually has a grant table or not. • http://www.securityfocus.com/bid/100817 • CWE-476: NULL Pointer Dereference •