rpm package
suse/xen&distro=SUSE Linux Enterprise Server 11 SP3
pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3
Vulnerabilities (23)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-4164 | — | < 4.2.5_12-15.1 | 4.2.5_12-15.1 | Jun 15, 2015 | The compat_iret function in Xen 3.1 through 4.5 iterates the wrong way through a loop, which allows local 32-bit PV guest administrators to cause a denial of service (large loop and system hang) via a hypercall_iret call with EFLAGS.VM set. | ||
| CVE-2015-2751 | — | < 4.2.5_12-15.1 | 4.2.5_12-15.1 | Apr 1, 2015 | Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, allows remote domains with partial management control to cause a denial of service (host lock) via unspecified domctl operations. | ||
| CVE-2014-0222 | — | < 4.2.5_14-18.2 | 4.2.5_14-18.2 | Nov 4, 2014 | Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image. |
- CVE-2015-4164Jun 15, 2015affected < 4.2.5_12-15.1fixed 4.2.5_12-15.1
The compat_iret function in Xen 3.1 through 4.5 iterates the wrong way through a loop, which allows local 32-bit PV guest administrators to cause a denial of service (large loop and system hang) via a hypercall_iret call with EFLAGS.VM set.
- CVE-2015-2751Apr 1, 2015affected < 4.2.5_12-15.1fixed 4.2.5_12-15.1
Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, allows remote domains with partial management control to cause a denial of service (host lock) via unspecified domctl operations.
- CVE-2014-0222Nov 4, 2014affected < 4.2.5_14-18.2fixed 4.2.5_14-18.2
Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image.
Page 2 of 2