rpm package

suse/xen&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1

pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1

Vulnerabilities (234)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2017-10915	Cri	9.0	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	Jul 5, 2017	The shadow-paging feature in Xen through 4.8.x mismanages page references and consequently introduces a race condition, which allows guest OS users to obtain Xen privileges, aka XSA-219.
CVE-2017-10914	Hig	8.1	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	Jul 5, 2017	The grant-table feature in Xen through 4.8.x has a race condition leading to a double free, which allows guest OS users to cause a denial of service (memory consumption), or possibly obtain sensitive information or gain privileges, aka XSA-218 bug 2.
CVE-2017-10913	Cri	9.8	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	Jul 5, 2017	The grant-table feature in Xen through 4.8.x provides false mapping information in certain cases of concurrent unmap calls, which allows backend attackers to obtain sensitive information or gain privileges, aka XSA-218 bug 1.
CVE-2017-10912	Cri	10.0	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	Jul 5, 2017	Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217.
CVE-2017-10911	Med	6.5	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	Jul 5, 2017	The make_response function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS (or other guest OS) kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interfac
CVE-2017-9503	Med	5.5	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	Jun 16, 2017	QEMU (aka Quick Emulator), when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) via vectors involving megasas command processing.
CVE-2017-9374	Med	5.5	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	Jun 16, 2017	Memory leak in QEMU (aka Quick Emulator), when built with USB EHCI Emulation support, allows local guest OS privileged users to cause a denial of service (memory consumption) by repeatedly hot-unplugging the device.
CVE-2017-9330	Med	5.6	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	Jun 8, 2017	QEMU (aka Quick Emulator) before 2.9.0, when built with the USB OHCI Emulation support, allows local guest OS users to cause a denial of service (infinite loop) by leveraging an incorrect return value, a different vulnerability than CVE-2017-6505.
CVE-2017-8309	Hig	7.5	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	May 23, 2017	Memory leak in the audio/audio.c in QEMU (aka Quick Emulator) allows remote attackers to cause a denial of service (memory consumption) by repeatedly starting and stopping audio capture.
CVE-2017-8905	Hig	8.8	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	May 11, 2017	Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, which might allow PV guest OS users to execute arbitrary code on the host OS, aka XSA-215.
CVE-2017-8112	Med	6.5	< 4.5.5_12-22.18.1	4.5.5_12-22.18.1	May 2, 2017	hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and CPU consumption) via the message ring page count.
CVE-2017-7718	Med	5.5	< 4.5.5_10-22.14.1	4.5.5_10-22.14.1	Apr 20, 2017	hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors related to copying VGA data via the cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functi
CVE-2015-8619	Hig	7.5	< 4.5.2_06-7.1	4.5.2_06-7.1	Apr 13, 2017	The Human Monitor Interface support in QEMU allows remote attackers to cause a denial of service (out-of-bounds write and application crash).
CVE-2015-8567	Hig	7.7	< 4.5.2_06-7.1	4.5.2_06-7.1	Apr 13, 2017	Memory leak in net/vmxnet3.c in QEMU allows remote attackers to cause a denial of service (memory consumption).
CVE-2015-8345	Med	6.5	< 4.5.2_02-4.1	4.5.2_02-4.1	Apr 13, 2017	The eepro100 emulator in QEMU qemu-kvm blank allows local guest users to cause a denial of service (application crash and infinite loop) via vectors involving the command block list.
CVE-2015-8613	Med	6.5	< 4.5.2_06-7.1	4.5.2_06-7.1	Apr 11, 2017	Stack-based buffer overflow in the megasas_ctrl_get_info function in QEMU, when built with SCSI MegaRAID SAS HBA emulation support, allows local guest users to cause a denial of service (QEMU instance crash) via a crafted SCSI controller CTRL_GET_INFO command.
CVE-2015-8568	Med	6.5	< 4.5.2_06-7.1	4.5.2_06-7.1	Apr 11, 2017	Memory leak in QEMU, when built with a VMWARE VMXNET3 paravirtual NIC emulator support, allows local guest users to cause a denial of service (host memory consumption) by trying to activate the vmxnet3 device repeatedly.
CVE-2015-8504	Med	6.5	< 4.5.2_06-7.1	4.5.2_06-7.1	Apr 11, 2017	Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of service (arithmetic exception and application crash) via crafted SetPixelFormat messages from a client.
CVE-2017-5973	Med	5.5	< 4.5.5_06-22.11.2	4.5.5_06-22.11.2	Mar 27, 2017	The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and QEMU process crash) via vectors related to control transfer descriptor sequence.
CVE-2016-9922	Med	5.5	< 4.5.5_06-22.11.2	4.5.5_06-22.11.2	Mar 27, 2017	The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka Quick Emulator), when cirrus graphics mode is VGA, allows local guest OS privileged users to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving blit pitch values.

CVE-2017-10915CriJul 5, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
The shadow-paging feature in Xen through 4.8.x mismanages page references and consequently introduces a race condition, which allows guest OS users to obtain Xen privileges, aka XSA-219.
CVE-2017-10914HigJul 5, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
The grant-table feature in Xen through 4.8.x has a race condition leading to a double free, which allows guest OS users to cause a denial of service (memory consumption), or possibly obtain sensitive information or gain privileges, aka XSA-218 bug 2.
CVE-2017-10913CriJul 5, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
The grant-table feature in Xen through 4.8.x provides false mapping information in certain cases of concurrent unmap calls, which allows backend attackers to obtain sensitive information or gain privileges, aka XSA-218 bug 1.
CVE-2017-10912CriJul 5, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217.
CVE-2017-10911MedJul 5, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
The make_response function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS (or other guest OS) kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interfac
CVE-2017-9503MedJun 16, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
QEMU (aka Quick Emulator), when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) via vectors involving megasas command processing.
CVE-2017-9374MedJun 16, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
Memory leak in QEMU (aka Quick Emulator), when built with USB EHCI Emulation support, allows local guest OS privileged users to cause a denial of service (memory consumption) by repeatedly hot-unplugging the device.
CVE-2017-9330MedJun 8, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
QEMU (aka Quick Emulator) before 2.9.0, when built with the USB OHCI Emulation support, allows local guest OS users to cause a denial of service (infinite loop) by leveraging an incorrect return value, a different vulnerability than CVE-2017-6505.
CVE-2017-8309HigMay 23, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
Memory leak in the audio/audio.c in QEMU (aka Quick Emulator) allows remote attackers to cause a denial of service (memory consumption) by repeatedly starting and stopping audio capture.
CVE-2017-8905HigMay 11, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, which might allow PV guest OS users to execute arbitrary code on the host OS, aka XSA-215.
CVE-2017-8112MedMay 2, 2017
affected < 4.5.5_12-22.18.1fixed 4.5.5_12-22.18.1
hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and CPU consumption) via the message ring page count.
CVE-2017-7718MedApr 20, 2017
affected < 4.5.5_10-22.14.1fixed 4.5.5_10-22.14.1
hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors related to copying VGA data via the cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functi
CVE-2015-8619HigApr 13, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
The Human Monitor Interface support in QEMU allows remote attackers to cause a denial of service (out-of-bounds write and application crash).
CVE-2015-8567HigApr 13, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
Memory leak in net/vmxnet3.c in QEMU allows remote attackers to cause a denial of service (memory consumption).
CVE-2015-8345MedApr 13, 2017
affected < 4.5.2_02-4.1fixed 4.5.2_02-4.1
The eepro100 emulator in QEMU qemu-kvm blank allows local guest users to cause a denial of service (application crash and infinite loop) via vectors involving the command block list.
CVE-2015-8613MedApr 11, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
Stack-based buffer overflow in the megasas_ctrl_get_info function in QEMU, when built with SCSI MegaRAID SAS HBA emulation support, allows local guest users to cause a denial of service (QEMU instance crash) via a crafted SCSI controller CTRL_GET_INFO command.
CVE-2015-8568MedApr 11, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
Memory leak in QEMU, when built with a VMWARE VMXNET3 paravirtual NIC emulator support, allows local guest users to cause a denial of service (host memory consumption) by trying to activate the vmxnet3 device repeatedly.
CVE-2015-8504MedApr 11, 2017
affected < 4.5.2_06-7.1fixed 4.5.2_06-7.1
Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of service (arithmetic exception and application crash) via crafted SetPixelFormat messages from a client.
CVE-2017-5973MedMar 27, 2017
affected < 4.5.5_06-22.11.2fixed 4.5.5_06-22.11.2
The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and QEMU process crash) via vectors related to control transfer descriptor sequence.
CVE-2016-9922MedMar 27, 2017
affected < 4.5.5_06-22.11.2fixed 4.5.5_06-22.11.2
The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka Quick Emulator), when cirrus graphics mode is VGA, allows local guest OS privileged users to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving blit pitch values.

Page 6 of 12