Xen

Xen

483 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2017-15588

  • EPSS 0.08%
  • Veröffentlicht 18.10.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to execute arbitrary code on the host OS because of a race condition that can cause a stale TLB entry.

6.5

CVE-2017-15589

  • EPSS 0.09%
  • Veröffentlicht 18.10.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to obtain sensitive information from the host OS (or an arbitrary guest OS) because intercepted I/O operations can cause a write of data from uninitialized hypervisor stack ...

8.8

CVE-2017-15590

  • EPSS 0.07%
  • Veröffentlicht 18.10.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because MSI mapping was mishandled.

6.5

CVE-2017-15591

  • EPSS 0.05%
  • Veröffentlicht 18.10.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in Xen 4.5.x through 4.9.x allowing attackers (who control a stub domain kernel or tool stack) to cause a denial of service (host OS crash) because of a missing comparison (of range start to range end) within the DMOP map/unma...

8.8

CVE-2017-15592

  • EPSS 0.11%
  • Veröffentlicht 18.10.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because self-linear shadow mappings are mishandled for translated guests.

6.5

CVE-2017-15593

  • EPSS 0.07%
  • Veröffentlicht 18.10.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (memory leak) because reference counts are mishandled.

8.8

CVE-2017-15594

  • EPSS 0.07%
  • Veröffentlicht 18.10.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in Xen through 4.9.x allowing x86 SVM PV guest OS users to cause a denial of service (hypervisor crash) or gain privileges because IDT settings are mishandled during CPU hotplugging.

8.8

CVE-2017-15595

  • EPSS 0.68%
  • Veröffentlicht 18.10.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (unbounded recursion, stack consumption, and hypervisor crash) or possibly gain privileges via crafted page-table stacking.

6

CVE-2017-15596

  • EPSS 0.08%
  • Veröffentlicht 18.10.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in Xen 4.4.x through 4.9.x allowing ARM guest OS users to cause a denial of service (prevent physical CPU usage) because of lock mishandling upon detection of an add-to-physmap error.

8.8

CVE-2015-7504

  • EPSS 0.63%
  • Veröffentlicht 16.10.2017 20:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a series of packets in loopback mode.