rpm package

suse/xen&distro=SUSE Linux Enterprise Server for SAP Applications 12

pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Vulnerabilities (187)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2015-8613	Med	6.5	< 4.4.4_02-22.19.1	4.4.4_02-22.19.1	Apr 11, 2017	Stack-based buffer overflow in the megasas_ctrl_get_info function in QEMU, when built with SCSI MegaRAID SAS HBA emulation support, allows local guest users to cause a denial of service (QEMU instance crash) via a crafted SCSI controller CTRL_GET_INFO command.
CVE-2015-8568	Med	6.5	< 4.4.4_02-22.19.1	4.4.4_02-22.19.1	Apr 11, 2017	Memory leak in QEMU, when built with a VMWARE VMXNET3 paravirtual NIC emulator support, allows local guest users to cause a denial of service (host memory consumption) by trying to activate the vmxnet3 device repeatedly.
CVE-2015-8504	Med	6.5	< 4.4.4_02-22.19.1	4.4.4_02-22.19.1	Apr 11, 2017	Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of service (arithmetic exception and application crash) via crafted SetPixelFormat messages from a client.
CVE-2017-7228	Hig	8.2	< 4.4.4_16-22.36.1	4.4.4_16-22.36.1	Apr 4, 2017	An issue (known as XSA-212) was discovered in Xen, with fixes available for 4.8.x, 4.7.x, 4.6.x, 4.5.x, and 4.4.x. The earlier XSA-29 fix introduced an insufficient check on XENMEM_exchange input, allowing the caller to drive hypervisor memory accesses outside of the guest provid
CVE-2017-5973	Med	5.5	< 4.4.4_14-22.33.1	4.4.4_14-22.33.1	Mar 27, 2017	The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and QEMU process crash) via vectors related to control transfer descriptor sequence.
CVE-2016-9922	Med	5.5	< 4.4.4_14-22.33.1	4.4.4_14-22.33.1	Mar 27, 2017	The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka Quick Emulator), when cirrus graphics mode is VGA, allows local guest OS privileged users to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving blit pitch values.
CVE-2017-5856	Med	6.5	< 4.4.4_14-22.33.1	4.4.4_14-22.33.1	Mar 16, 2017	Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over
CVE-2017-5898	Med	5.5	< 4.4.4_14-22.33.1	4.4.4_14-22.33.1	Mar 15, 2017	Integer overflow in the emulated_apdu_from_guest function in usb/dev-smartcard-reader.c in Quick Emulator (Qemu), when built with the CCID Card device emulator support, allows local users to cause a denial of service (application crash) via a large Application Protocol Data Units
CVE-2017-5579	Med	6.5	< 4.4.4_14-22.33.1	4.4.4_14-22.33.1	Mar 15, 2017	Memory leak in the serial_exit_core function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.
CVE-2016-10155	Med	6.0	< 4.4.4_14-22.33.1	4.4.4_14-22.33.1	Mar 15, 2017	Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.
CVE-2017-6505	Med	6.5	< 4.4.4_16-22.36.1	4.4.4_16-22.36.1	Mar 15, 2017	The ohci_service_ed_list function in hw/usb/hcd-ohci.c in QEMU (aka Quick Emulator) before 2.9.0 allows local guest OS users to cause a denial of service (infinite loop) via vectors involving the number of link endpoint list descriptors, a different vulnerability than CVE-2017-93
CVE-2017-6414	Med	6.5	< 4.4.4_16-22.36.1	4.4.4_16-22.36.1	Mar 15, 2017	Memory leak in the vcard_apdu_new function in card_7816.c in libcacard before 2.5.3 allows local guest OS users to cause a denial of service (host memory consumption) via vectors related to allocating a new APDU object.
CVE-2016-9637	Hig	7.5	< 4.4.4_05-22.25.1	4.4.4_05-22.25.1	Feb 17, 2017	The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access.
CVE-2016-9932	Low	3.3	< 4.4.4_05-22.28.2	4.4.4_05-22.28.2	Jan 26, 2017	CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix.
CVE-2016-10024	Med	6.0	< 4.4.4_05-22.28.2	4.4.4_05-22.28.2	Jan 26, 2017	Xen through 4.8.x allows local x86 PV guest OS kernel administrators to cause a denial of service (host hang or crash) by modifying the instruction stream asynchronously while performing certain kernel operations.
CVE-2016-10013	Hig	7.8	< 4.4.4_05-22.28.2	4.4.4_05-22.28.2	Jan 26, 2017	Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to gain privileges by leveraging mishandling of SYSCALL singlestep during emulation.
CVE-2016-9386	Hig	7.8	< 4.4.4_05-22.25.1	4.4.4_05-22.25.1	Jan 23, 2017	The x86 emulator in Xen does not properly treat x86 NULL segments as unusable when accessing memory, which might allow local HVM guest users to gain privileges via vectors involving "unexpected" base/limit values.
CVE-2016-9385	Med	6.0	< 4.4.4_05-22.25.1	4.4.4_05-22.25.1	Jan 23, 2017	The x86 segment base write emulation functionality in Xen 4.4.x through 4.7.x allows local x86 PV guest OS administrators to cause a denial of service (host crash) by leveraging lack of canonical address checks.
CVE-2016-9383	Hig	8.8	< 4.4.4_05-22.25.1	4.4.4_05-22.25.1	Jan 23, 2017	Xen, when running on a 64-bit hypervisor, allows local x86 guest OS users to modify arbitrary memory and consequently obtain sensitive information, cause a denial of service (host crash), or execute arbitrary code on the host by leveraging broken emulation of bit test instruction
CVE-2016-9382	Hig	7.8	< 4.4.4_05-22.25.1	4.4.4_05-22.25.1	Jan 23, 2017	Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to st

CVE-2015-8613MedApr 11, 2017
affected < 4.4.4_02-22.19.1fixed 4.4.4_02-22.19.1
Stack-based buffer overflow in the megasas_ctrl_get_info function in QEMU, when built with SCSI MegaRAID SAS HBA emulation support, allows local guest users to cause a denial of service (QEMU instance crash) via a crafted SCSI controller CTRL_GET_INFO command.
CVE-2015-8568MedApr 11, 2017
affected < 4.4.4_02-22.19.1fixed 4.4.4_02-22.19.1
Memory leak in QEMU, when built with a VMWARE VMXNET3 paravirtual NIC emulator support, allows local guest users to cause a denial of service (host memory consumption) by trying to activate the vmxnet3 device repeatedly.
CVE-2015-8504MedApr 11, 2017
affected < 4.4.4_02-22.19.1fixed 4.4.4_02-22.19.1
Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of service (arithmetic exception and application crash) via crafted SetPixelFormat messages from a client.
CVE-2017-7228HigApr 4, 2017
affected < 4.4.4_16-22.36.1fixed 4.4.4_16-22.36.1
An issue (known as XSA-212) was discovered in Xen, with fixes available for 4.8.x, 4.7.x, 4.6.x, 4.5.x, and 4.4.x. The earlier XSA-29 fix introduced an insufficient check on XENMEM_exchange input, allowing the caller to drive hypervisor memory accesses outside of the guest provid
CVE-2017-5973MedMar 27, 2017
affected < 4.4.4_14-22.33.1fixed 4.4.4_14-22.33.1
The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (infinite loop and QEMU process crash) via vectors related to control transfer descriptor sequence.
CVE-2016-9922MedMar 27, 2017
affected < 4.4.4_14-22.33.1fixed 4.4.4_14-22.33.1
The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka Quick Emulator), when cirrus graphics mode is VGA, allows local guest OS privileged users to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving blit pitch values.
CVE-2017-5856MedMar 16, 2017
affected < 4.4.4_14-22.33.1fixed 4.4.4_14-22.33.1
Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) via MegaRAID Firmware Interface (MFI) commands with the sglist size set to a value over
CVE-2017-5898MedMar 15, 2017
affected < 4.4.4_14-22.33.1fixed 4.4.4_14-22.33.1
Integer overflow in the emulated_apdu_from_guest function in usb/dev-smartcard-reader.c in Quick Emulator (Qemu), when built with the CCID Card device emulator support, allows local users to cause a denial of service (application crash) via a large Application Protocol Data Units
CVE-2017-5579MedMar 15, 2017
affected < 4.4.4_14-22.33.1fixed 4.4.4_14-22.33.1
Memory leak in the serial_exit_core function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.
CVE-2016-10155MedMar 15, 2017
affected < 4.4.4_14-22.33.1fixed 4.4.4_14-22.33.1
Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.
CVE-2017-6505MedMar 15, 2017
affected < 4.4.4_16-22.36.1fixed 4.4.4_16-22.36.1
The ohci_service_ed_list function in hw/usb/hcd-ohci.c in QEMU (aka Quick Emulator) before 2.9.0 allows local guest OS users to cause a denial of service (infinite loop) via vectors involving the number of link endpoint list descriptors, a different vulnerability than CVE-2017-93
CVE-2017-6414MedMar 15, 2017
affected < 4.4.4_16-22.36.1fixed 4.4.4_16-22.36.1
Memory leak in the vcard_apdu_new function in card_7816.c in libcacard before 2.5.3 allows local guest OS users to cause a denial of service (host memory consumption) via vectors related to allocating a new APDU object.
CVE-2016-9637HigFeb 17, 2017
affected < 4.4.4_05-22.25.1fixed 4.4.4_05-22.25.1
The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access.
CVE-2016-9932LowJan 26, 2017
affected < 4.4.4_05-22.28.2fixed 4.4.4_05-22.28.2
CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix.
CVE-2016-10024MedJan 26, 2017
affected < 4.4.4_05-22.28.2fixed 4.4.4_05-22.28.2
Xen through 4.8.x allows local x86 PV guest OS kernel administrators to cause a denial of service (host hang or crash) by modifying the instruction stream asynchronously while performing certain kernel operations.
CVE-2016-10013HigJan 26, 2017
affected < 4.4.4_05-22.28.2fixed 4.4.4_05-22.28.2
Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to gain privileges by leveraging mishandling of SYSCALL singlestep during emulation.
CVE-2016-9386HigJan 23, 2017
affected < 4.4.4_05-22.25.1fixed 4.4.4_05-22.25.1
The x86 emulator in Xen does not properly treat x86 NULL segments as unusable when accessing memory, which might allow local HVM guest users to gain privileges via vectors involving "unexpected" base/limit values.
CVE-2016-9385MedJan 23, 2017
affected < 4.4.4_05-22.25.1fixed 4.4.4_05-22.25.1
The x86 segment base write emulation functionality in Xen 4.4.x through 4.7.x allows local x86 PV guest OS administrators to cause a denial of service (host crash) by leveraging lack of canonical address checks.
CVE-2016-9383HigJan 23, 2017
affected < 4.4.4_05-22.25.1fixed 4.4.4_05-22.25.1
Xen, when running on a 64-bit hypervisor, allows local x86 guest OS users to modify arbitrary memory and consequently obtain sensitive information, cause a denial of service (host crash), or execute arbitrary code on the host by leveraging broken emulation of bit test instruction
CVE-2016-9382HigJan 23, 2017
affected < 4.4.4_05-22.25.1fixed 4.4.4_05-22.25.1
Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to st

Page 3 of 10