rpm package
suse/xen&distro=SUSE Linux Enterprise Server for SAP Applications 12
pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012
Vulnerabilities (187)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-3456 | — | < 4.4.2_04-18.1 | 4.4.2_04-18.1 | May 13, 2015 | The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, o | ||
| CVE-2015-3340 | — | < 4.4.2_04-18.1 | 4.4.2_04-18.1 | Apr 28, 2015 | Xen 4.2.x through 4.5.x does not initialize certain fields, which allows certain remote service domains to obtain sensitive information from memory via a (1) XEN_DOMCTL_gettscinfo or (2) XEN_SYSCTL_getdomaininfolist request. | ||
| CVE-2014-9718 | — | < 4.4.4_02-22.19.1 | 4.4.4_02-22.19.1 | Apr 21, 2015 | The (1) BMDMA and (2) AHCI HBA interfaces in the IDE functionality in QEMU 1.0 through 2.1.3 have multiple interpretations of a function's return value, which allows guest OS users to cause a host OS denial of service (memory consumption or infinite loop, and system crash) via a | ||
| CVE-2015-2756 | — | < 4.4.2_02-15.1 | 4.4.2_02-15.1 | Apr 1, 2015 | QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1) memory or (2) I/O decoding for a PCI Express dev | ||
| CVE-2015-2752 | — | < 4.4.2_02-15.1 | 4.4.2_02-15.1 | Apr 1, 2015 | The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, when using a PCI passthrough device, is not preemptible, which allows local x86 HVM domain users to cause a denial of service (host CPU consumption) via a crafted request to the device model (qemu-dm). | ||
| CVE-2015-2751 | — | < 4.4.2_02-15.1 | 4.4.2_02-15.1 | Apr 1, 2015 | Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, allows remote domains with partial management control to cause a denial of service (host lock) via unspecified domctl operations. | ||
| CVE-2015-2152 | — | < 4.4.1_10-9.1 | 4.4.1_10-9.1 | Mar 18, 2015 | Xen 4.5.x and earlier enables certain default backends when emulating a VGA device for an x86 HVM guest qemu even when the configuration disables them, which allows local guest users to obtain access to the VGA console by (1) setting the DISPLAY environment variable, when compile | ||
| CVE-2015-2151 | — | < 4.4.1_10-9.1 | 4.4.1_10-9.1 | Mar 12, 2015 | The x86 emulator in Xen 3.2.x through 4.5.x does not properly ignore segment overrides for instructions with register operands, which allows local guest users to obtain sensitive information, cause a denial of service (memory corruption), or possibly execute arbitrary code via un | ||
| CVE-2015-2045 | — | < 4.4.1_10-9.1 | 4.4.1_10-9.1 | Mar 12, 2015 | The HYPERVISOR_xen_version hypercall in Xen 3.2.x through 4.5.x does not properly initialize data structures, which allows local guest users to obtain sensitive information via unspecified vectors. | ||
| CVE-2015-2044 | — | < 4.4.1_10-9.1 | 4.4.1_10-9.1 | Mar 12, 2015 | The emulation routines for unspecified X86 devices in Xen 3.2.x through 4.5.x does not properly initialize data, which allow local HVM guest users to obtain sensitive information via vectors involving an unsupported access size. | ||
| CVE-2015-0361 | — | < 4.4.1_10-9.1 | 4.4.1_10-9.1 | Jan 7, 2015 | Use-after-free vulnerability in Xen 4.2.x, 4.3.x, and 4.4.x allows remote domains to cause a denial of service (system crash) via a crafted hypercall during HVM guest teardown. | ||
| CVE-2014-9066 | — | < 4.4.1_10-9.1 | 4.4.1_10-9.1 | Dec 9, 2014 | Xen 4.4.x and earlier, when using a large number of VCPUs, does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service (write denial or NMI watchdog timeout and host crash) via a large number of read requests, a different vulnera | ||
| CVE-2014-9065 | — | < 4.4.1_10-9.1 | 4.4.1_10-9.1 | Dec 9, 2014 | common/spinlock.c in Xen 4.4.x and earlier does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service (write denial or NMI watchdog timeout and host crash) via a large number of read requests, a different vulnerability to CVE-20 | ||
| CVE-2014-8106 | — | < 4.4.4_14-22.33.1 | 4.4.4_14-22.33.1 | Dec 8, 2014 | Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320. | ||
| CVE-2014-7815 | — | < 4.4.4_02-22.19.1 | 4.4.4_02-22.19.1 | Nov 14, 2014 | The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value. | ||
| CVE-2014-3689 | — | < 4.4.4_02-22.19.1 | 4.4.4_02-22.19.1 | Nov 14, 2014 | The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling. | ||
| CVE-2014-3640 | — | < 4.4.4_02-22.19.1 | 4.4.4_02-22.19.1 | Nov 7, 2014 | The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized socket. | ||
| CVE-2014-0222 | — | < 4.4.3_02-22.12.1 | 4.4.3_02-22.12.1 | Nov 4, 2014 | Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image. | ||
| CVE-2013-4539 | — | < 4.4.4_02-22.19.1 | 4.4.4_02-22.19.1 | Nov 4, 2014 | Multiple buffer overflows in the tsc210x_load function in hw/input/tsc210x.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted (1) precision, (2) nextprecision, (3) function, or (4) nextfunction value in a savevm image. | ||
| CVE-2013-4538 | — | < 4.4.4_02-22.19.1 | 4.4.4_02-22.19.1 | Nov 4, 2014 | Multiple buffer overflows in the ssd0323_load function in hw/display/ssd0323.c in QEMU before 1.7.2 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via crafted (1) cmd_len, (2) row, or (3) col values; (4) row_start and ro |
- CVE-2015-3456May 13, 2015affected < 4.4.2_04-18.1fixed 4.4.2_04-18.1
The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, o
- CVE-2015-3340Apr 28, 2015affected < 4.4.2_04-18.1fixed 4.4.2_04-18.1
Xen 4.2.x through 4.5.x does not initialize certain fields, which allows certain remote service domains to obtain sensitive information from memory via a (1) XEN_DOMCTL_gettscinfo or (2) XEN_SYSCTL_getdomaininfolist request.
- CVE-2014-9718Apr 21, 2015affected < 4.4.4_02-22.19.1fixed 4.4.4_02-22.19.1
The (1) BMDMA and (2) AHCI HBA interfaces in the IDE functionality in QEMU 1.0 through 2.1.3 have multiple interpretations of a function's return value, which allows guest OS users to cause a host OS denial of service (memory consumption or infinite loop, and system crash) via a
- CVE-2015-2756Apr 1, 2015affected < 4.4.2_02-15.1fixed 4.4.2_02-15.1
QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1) memory or (2) I/O decoding for a PCI Express dev
- CVE-2015-2752Apr 1, 2015affected < 4.4.2_02-15.1fixed 4.4.2_02-15.1
The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, when using a PCI passthrough device, is not preemptible, which allows local x86 HVM domain users to cause a denial of service (host CPU consumption) via a crafted request to the device model (qemu-dm).
- CVE-2015-2751Apr 1, 2015affected < 4.4.2_02-15.1fixed 4.4.2_02-15.1
Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, allows remote domains with partial management control to cause a denial of service (host lock) via unspecified domctl operations.
- CVE-2015-2152Mar 18, 2015affected < 4.4.1_10-9.1fixed 4.4.1_10-9.1
Xen 4.5.x and earlier enables certain default backends when emulating a VGA device for an x86 HVM guest qemu even when the configuration disables them, which allows local guest users to obtain access to the VGA console by (1) setting the DISPLAY environment variable, when compile
- CVE-2015-2151Mar 12, 2015affected < 4.4.1_10-9.1fixed 4.4.1_10-9.1
The x86 emulator in Xen 3.2.x through 4.5.x does not properly ignore segment overrides for instructions with register operands, which allows local guest users to obtain sensitive information, cause a denial of service (memory corruption), or possibly execute arbitrary code via un
- CVE-2015-2045Mar 12, 2015affected < 4.4.1_10-9.1fixed 4.4.1_10-9.1
The HYPERVISOR_xen_version hypercall in Xen 3.2.x through 4.5.x does not properly initialize data structures, which allows local guest users to obtain sensitive information via unspecified vectors.
- CVE-2015-2044Mar 12, 2015affected < 4.4.1_10-9.1fixed 4.4.1_10-9.1
The emulation routines for unspecified X86 devices in Xen 3.2.x through 4.5.x does not properly initialize data, which allow local HVM guest users to obtain sensitive information via vectors involving an unsupported access size.
- CVE-2015-0361Jan 7, 2015affected < 4.4.1_10-9.1fixed 4.4.1_10-9.1
Use-after-free vulnerability in Xen 4.2.x, 4.3.x, and 4.4.x allows remote domains to cause a denial of service (system crash) via a crafted hypercall during HVM guest teardown.
- CVE-2014-9066Dec 9, 2014affected < 4.4.1_10-9.1fixed 4.4.1_10-9.1
Xen 4.4.x and earlier, when using a large number of VCPUs, does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service (write denial or NMI watchdog timeout and host crash) via a large number of read requests, a different vulnera
- CVE-2014-9065Dec 9, 2014affected < 4.4.1_10-9.1fixed 4.4.1_10-9.1
common/spinlock.c in Xen 4.4.x and earlier does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service (write denial or NMI watchdog timeout and host crash) via a large number of read requests, a different vulnerability to CVE-20
- CVE-2014-8106Dec 8, 2014affected < 4.4.4_14-22.33.1fixed 4.4.4_14-22.33.1
Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320.
- CVE-2014-7815Nov 14, 2014affected < 4.4.4_02-22.19.1fixed 4.4.4_02-22.19.1
The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value.
- CVE-2014-3689Nov 14, 2014affected < 4.4.4_02-22.19.1fixed 4.4.4_02-22.19.1
The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling.
- CVE-2014-3640Nov 7, 2014affected < 4.4.4_02-22.19.1fixed 4.4.4_02-22.19.1
The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized socket.
- CVE-2014-0222Nov 4, 2014affected < 4.4.3_02-22.12.1fixed 4.4.3_02-22.12.1
Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image.
- CVE-2013-4539Nov 4, 2014affected < 4.4.4_02-22.19.1fixed 4.4.4_02-22.19.1
Multiple buffer overflows in the tsc210x_load function in hw/input/tsc210x.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted (1) precision, (2) nextprecision, (3) function, or (4) nextfunction value in a savevm image.
- CVE-2013-4538Nov 4, 2014affected < 4.4.4_02-22.19.1fixed 4.4.4_02-22.19.1
Multiple buffer overflows in the ssd0323_load function in hw/display/ssd0323.c in QEMU before 1.7.2 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via crafted (1) cmd_len, (2) row, or (3) col values; (4) row_start and ro
Page 9 of 10