Xen

Xen

483 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2019-18420

  • EPSS 4.05%
  • Veröffentlicht 31.10.2019 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:33:13

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of service via a VCPUOP_initialise hypercall. hypercall_create_continuation() is a variadic function which uses a printf-like format string to interpret it...

7.5

CVE-2019-18421

  • EPSS 1.86%
  • Veröffentlicht 31.10.2019 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:33:13

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations. There are issues with restartable PV type change operations. To avoi...

8.8

CVE-2019-18422

  • EPSS 3.58%
  • Veröffentlicht 31.10.2019 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:33:14

An issue was discovered in Xen through 4.12.x allowing ARM guest OS users to cause a denial of service or gain privileges by leveraging the erroneous enabling of interrupts. Interrupts are unconditionally unmasked in exception handlers. When an excep...

5.5

CVE-2019-17349

  • EPSS 0.14%
  • Veröffentlicht 08.10.2019 01:15:11
  • Zuletzt bearbeitet 21.11.2024 04:32:08

An issue was discovered in Xen through 4.12.x allowing Arm domU attackers to cause a denial of service (infinite loop) involving a LoadExcl or StoreExcl operation.

8.8

CVE-2019-17340

  • EPSS 0.08%
  • Veröffentlicht 08.10.2019 01:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:07

An issue was discovered in Xen through 4.11.x allowing x86 guest OS users to cause a denial of service or gain privileges because grant-table transfer requests are mishandled.

7.8

CVE-2019-17341

  • EPSS 0.1%
  • Veröffentlicht 08.10.2019 01:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:07

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a page-writability race condition during addition of a passed-through PCI device.

7

CVE-2019-17342

  • EPSS 0.11%
  • Veröffentlicht 08.10.2019 01:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:07

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEM_exchange was introduced.

6.8

CVE-2019-17343

  • EPSS 0.12%
  • Veröffentlicht 08.10.2019 01:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:07

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging incorrect use of the HVM physmap concept for PV domains.

6.5

CVE-2019-17344

  • EPSS 0.15%
  • Veröffentlicht 08.10.2019 01:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:07

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service by leveraging a long-running operation that exists to support restartability of PTE updates.

6.5

CVE-2019-17345

  • EPSS 0.08%
  • Veröffentlicht 08.10.2019 01:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:07

An issue was discovered in Xen 4.8.x through 4.11.x allowing x86 PV guest OS users to cause a denial of service because mishandling of failed IOMMU operations causes a bug check during the cleanup of a crashed guest.