CVSS: 9.8EPSS: 0%CPEs: 37EXPL: 0CVE-2015-4164 – Debian Security Advisory 3286-1
https://notcve.org/view.php?id=CVE-2015-4164
15 Jun 2015 — The compat_iret function in Xen 3.1 through 4.5 iterates the wrong way through a loop, which allows local 32-bit PV guest administrators to cause a denial of service (large loop and system hang) via a hypercall_iret call with EFLAGS.VM set. La función compat_iret en Xen 3.1 hasta 4.5 itera en la dirección errónea a través de un bucle, lo que permite a administradores locales invitados de PV de 32 dits causar una denegación de servicio (bucle grande y cuelgue del sistema) a través de una llamada hypercall_ir... • http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00004.html • CWE-399: Resource Management Errors •
CVSS: 5.5EPSS: 0%CPEs: 11EXPL: 0CVE-2015-4163 – Debian Security Advisory 3286-1
https://notcve.org/view.php?id=CVE-2015-4163
15 Jun 2015 — GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the grant table operation version, which allows local guest domains to cause a denial of service (NULL pointer dereference) via a hypercall without a GNTTABOP_setup_table or GNTTABOP_set_version. GNTTABOP_swap_grant_ref en Xen 4.2 hasta 4.5 no comprueba la versión de la operación de ceder tablas, lo que permite a dominios locales invitados causar una denegación de servicio (referencia a puntero nulo) a través de una hiperllamada sin GNTTABOP_setu... • http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00004.html •
CVSS: 6.0EPSS: 0%CPEs: 30EXPL: 0CVE-2015-4103 – Ubuntu Security Notice USN-2630-1
https://notcve.org/view.php?id=CVE-2015-4103
03 Jun 2015 — Xen 3.3.x through 4.5.x does not properly restrict write access to the host MSI message data field, which allows local x86 HVM guest administrators to cause a denial of service (host interrupt handling confusion) via vectors related to qemu and accessing spanning multiple fields. Xen 3.3.x hasta la versión 4.5.x no restringe correctamente el acceso a escritura al campo de datos del mensaje MSI del host, lo que permite a administradores invitados x86 HVM locales causar una denegación de servicio (confusión e... • http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160154.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 8%CPEs: 31EXPL: 0CVE-2015-4104 – Ubuntu Security Notice USN-2630-1
https://notcve.org/view.php?id=CVE-2015-4104
03 Jun 2015 — Xen 3.3.x through 4.5.x does not properly restrict access to PCI MSI mask bits, which allows local x86 HVM guest users to cause a denial of service (unexpected interrupt and host crash) via unspecified vectors. Xen 3.3.x hasta 4.5.x no restringe correctamente el acceso a los bits de máscara PCI MSI, lo que permite a usuarios locales invitados de x86 HVM causar una denegación de servicio (interrupción no esperado y caída de anfitrión) a través de vectores no especificados. Matt Tait discovered that QEMU inco... • http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160154.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 0%CPEs: 31EXPL: 0CVE-2015-4105 – Ubuntu Security Notice USN-2630-1
https://notcve.org/view.php?id=CVE-2015-4105
03 Jun 2015 — Xen 3.3.x through 4.5.x enables logging for PCI MSI-X pass-through error messages, which allows local x86 HVM guests to cause a denial of service (host disk consumption) via certain invalid operations. Xen 3.3.x hasta 4.5.x habilita el registro para mensajes de error 'pass-through' de PCI MSI-X, lo que permite a invitados locales de x86 HVM causar una denegación de servicio (consumo de disco de anfitrión) a través de ciertas operaciones inválidas. Matt Tait discovered that QEMU incorrectly handled the virtu... • http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160154.html • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 33%CPEs: 10EXPL: 3CVE-2015-3456 – QEMU - Floppy Disk Controller (FDC) (PoC)
https://notcve.org/view.php?id=CVE-2015-3456
13 May 2015 — The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM. Floppy Disk Controller (FDC) en QEMU, utilizado en Xen 4.5.x y anteriores y KVM, permite a usuarios locales invitados causar una denegación de servicio (escritura fuera de rango y caída del i... • https://www.exploit-db.com/exploits/37053 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 27EXPL: 0CVE-2015-3340 – Debian Security Advisory 3414-1
https://notcve.org/view.php?id=CVE-2015-3340
28 Apr 2015 — Xen 4.2.x through 4.5.x does not initialize certain fields, which allows certain remote service domains to obtain sensitive information from memory via a (1) XEN_DOMCTL_gettscinfo or (2) XEN_SYSCTL_getdomaininfolist request. Xen 4.2.x hasta 4.5.x no inicializa ciertos campos, lo que permite a ciertos dominios de servicio remotos obtener información sensible de la memoria a través de una solicitud (1) XEN_DOMCTL_gettscinfo o (2) XEN_SYSCTL_getdomaininfolist. Multiple security issues have been found in the Xe... • http://lists.fedoraproject.org/pipermail/package-announce/2015-April/156005.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2015-0777
https://notcve.org/view.php?id=CVE-2015-0777
05 Apr 2015 — drivers/xen/usbback/usbback.c in linux-2.6.18-xen-3.4.0 (aka the Xen 3.4.x support patches for the Linux kernel 2.6.18), as used in the Linux kernel 2.6.x and 3.x in SUSE Linux distributions, allows guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory via unspecified vectors. drivers/xen/usbback/usbback.c en linux-2.6.18-xen-3.4.0 (también conocido como los parches de soporte Xen 3.4.x para el kernel de Linux 2.6.18), utilizado en el kernel de Linux 2.6.x y 3.... • http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00001.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 14EXPL: 0CVE-2015-2756 – Gentoo Linux Security Advisory 201504-04
https://notcve.org/view.php?id=CVE-2015-2756
01 Apr 2015 — QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1) memory or (2) I/O decoding for a PCI Express device and then accessing the device, which triggers an Unsupported Request (UR) response. QEMU, utilizado en Xen 3.3.x hasta 4.5.x, no restringe correctamente el acceso a los registros de comandos PCI, lo que podría permitir a usuario... • http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154574.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 1%CPEs: 9EXPL: 0CVE-2015-2751 – Gentoo Linux Security Advisory 201504-04
https://notcve.org/view.php?id=CVE-2015-2751
01 Apr 2015 — Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, allows remote domains with partial management control to cause a denial of service (host lock) via unspecified domctl operations. Xen 4.3.x, 4.4.x, y 4.5.x, cuando utiliza la desagregación toolstack, opermite a dominios remotos con control de gestión parcial causar una denegación de servicio (bloqueo del anfitrión) a través de operaciones domctl no especificadas. Multiple vulnerabilities have been found in Xen, the worst of which can allow re... • http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154574.html • CWE-17: DEPRECATED: Code •