VYPR

Xen

by Xen

Source repositories

CVEs (479)

  • CVE-2011-1583Aug 12, 2011
    risk 0.00cvss epss 0.01

    Multiple integer overflows in tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allow local users to cause a denial of service and possibly execute arbitrary code via a crafted paravirtualised guest kernel image that triggers (1) a buffer overflow during a…

  • CVE-2010-4255Jan 25, 2011
    risk 0.00cvss epss 0.01

    The fixup_page_fault function in arch/x86/traps.c in Xen 4.0.1 and earlier on 64-bit platforms, when paravirtualization is enabled, does not verify that kernel mode is used to call the handle_gdt_ldt_mapping_fault function, which allows guest OS users to cause a denial of…

  • CVE-2010-4238Jan 22, 2011
    risk 0.00cvss epss 0.01

    The vbd_create function in Xen 3.1.2, when the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5 is used, allows guest OS users to cause a denial of service (host OS panic) via an attempted access to a virtual CD-ROM device through the blkback driver. NOTE: some of these…

  • CVE-2010-4247Jan 11, 2011
    risk 0.00cvss epss 0.01

    The do_block_io_op function in (1) drivers/xen/blkback/blkback.c and (2) drivers/xen/blktap/blktap.c in Xen before 3.4.0 for the Linux kernel 2.6.18, and possibly other versions, allows guest OS users to cause a denial of service (infinite loop and CPU consumption) via a large…

  • CVE-2010-3699Dec 8, 2010
    risk 0.00cvss epss 0.01

    The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being shut down or create a zombie domain, causes a hang in zenwatch, or prevents unspecified xm commands from working properly,…

  • CVE-2010-2070Jun 16, 2010
    risk 0.00cvss epss 0.00

    arch/ia64/xen/faults.c in Xen 3.4 and 4.0 in Linux kernel 2.6.18, and possibly other kernel versions, when running on IA-64 architectures, allows local users to cause a denial of service and "turn on BE by modifying the user mask of the PSR," as demonstrated via exploitation of…

  • CVE-2008-7096Aug 27, 2009
    risk 0.00cvss epss 0.00

    Intel Desktop and Intel Mobile Boards with BIOS firmware DQ35JO, DQ35MP, DP35DP, DG33FB, DG33BU, DG33TL, MGM965TW, D945GCPE, and DX38BT allows local administrators with ring 0 privileges to gain additional privileges and modify code that is running in System Management Mode, or…

  • CVE-2009-1758May 22, 2009
    risk 0.00cvss epss 0.02

    The hypervisor_callback function in Xen, possibly before 3.4.0, as applied to the Linux kernel 2.6.30-rc4, 2.6.18, and probably other versions allows guest user applications to cause a denial of service (kernel oops) of the guest OS by triggering a segmentation fault in "certain…

  • CVE-2008-5716Dec 24, 2008
    risk 0.00cvss epss 0.00

    xend in Xen 3.3.0 does not properly restrict a guest VM's write access within the /local/domain xenstore directory tree, which allows guest OS users to cause a denial of service and possibly have unspecified other impact by writing to (1) console/tty, (2) console/limit, or (3)…

  • CVE-2008-4993Nov 7, 2008
    risk 0.00cvss epss 0.00

    qemu-dm.debug in Xen 3.2.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/args temporary file.

  • CVE-2008-3687Aug 14, 2008
    risk 0.00cvss epss 0.03

    Heap-based buffer overflow in the flask_security_label function in Xen 3.3, when compiled with the XSM:FLASK module, allows unprivileged domain users (domU) to execute arbitrary code via the flask_op hypercall.

  • CVE-2008-1943May 14, 2008
    risk 0.00cvss epss 0.00

    Buffer overflow in the backend of XenSource Xen Para Virtualized Frame Buffer (PVFB) 3.0 through 3.1.2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted description of a shared framebuffer.

  • CVE-2008-1944May 14, 2008
    risk 0.00cvss epss 0.00

    Buffer overflow in the backend framebuffer of XenSource Xen Para-Virtualized Framebuffer (PVFB) Message 3.0 through 3.0.3 allows local users to cause a denial of service (SDL crash) and possibly execute arbitrary code via "bogus screen updates," related to missing validation of…

  • CVE-2008-1619Apr 2, 2008
    risk 0.00cvss epss 0.01

    The ssm_i emulation in Xen 5.1 on IA64 architectures allows attackers to cause a denial of service (dom0 panic) via certain traffic, as demonstrated using an FTP stress test tool.

  • CVE-2007-6416Dec 17, 2007
    risk 0.00cvss epss 0.00

    The copy_to_user function in the PAL emulation functionality for Xen 3.1.2 and earlier, when running on ia64 systems, allows HVM guest users to access arbitrary physical memory by triggering certain mapping operations.

  • CVE-2007-6207Dec 4, 2007
    risk 0.00cvss epss 0.00

    Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for mov_to_rr, which allows a VTi domain to read memory of other domains.

  • CVE-2007-5906Nov 9, 2007
    risk 0.00cvss epss 0.00

    Xen 3.1.1 allows virtual guest system users to cause a denial of service (hypervisor crash) by using a debug register (DR7) to set certain breakpoints.

  • CVE-2007-5907Nov 9, 2007
    risk 0.00cvss epss 0.00

    Xen 3.1.1 does not prevent modification of the CR4 TSC from applications, which allows pv guests to cause a denial of service (crash).

  • CVE-2007-3919Oct 28, 2007
    risk 0.00cvss epss 0.00

    (1) xenbaked and (2) xenmon.py in Xen 3.1 and earlier allow local users to truncate arbitrary files via a symlink attack on /tmp/xenq-shm.

Page 24 of 24