CVE-2016-9378
- EPSS 0.34%
- Veröffentlicht 22.02.2017 16:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when emulating instructions that generate software interrupts, allows local HVM guest OS users to cause a denial of service (guest crash) by leveraging an incorrect choice for software ...
CVE-2016-9384
- EPSS 0.39%
- Veröffentlicht 22.02.2017 16:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF symbol table.
CVE-2016-10013
- EPSS 0.42%
- Veröffentlicht 26.01.2017 15:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to gain privileges by leveraging mishandling of SYSCALL singlestep during emulation.
- EPSS 0.43%
- Veröffentlicht 26.01.2017 15:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Xen through 4.8.x allows local x86 PV guest OS kernel administrators to cause a denial of service (host hang or crash) by modifying the instruction stream asynchronously while performing certain kernel operations.
CVE-2016-10025
- EPSS 0.45%
- Veröffentlicht 26.01.2017 15:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
VMFUNC emulation in Xen 4.6.x through 4.8.x on x86 systems using AMD virtualization extensions (aka SVM) allows local HVM guest OS users to cause a denial of service (hypervisor crash) by leveraging a missing NULL pointer check.
CVE-2016-9932
- EPSS 0.42%
- Veröffentlicht 26.01.2017 15:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix.
CVE-2016-9379
- EPSS 0.44%
- Veröffentlicht 23.01.2017 21:59:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
The pygrub boot loader emulator in Xen, when S-expression output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via string quotes and S-expressions in the bootloader configuration ...
CVE-2016-9380
- EPSS 0.42%
- Veröffentlicht 23.01.2017 21:59:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via NUL bytes in the bootloader configuration file.
CVE-2016-9382
- EPSS 0.45%
- Veröffentlicht 23.01.2017 21:59:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switchi...
CVE-2016-9383
- EPSS 0.51%
- Veröffentlicht 23.01.2017 21:59:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Xen, when running on a 64-bit hypervisor, allows local x86 guest OS users to modify arbitrary memory and consequently obtain sensitive information, cause a denial of service (host crash), or execute arbitrary code on the host by leveraging broken emu...