Search CVE reports
21 – 30 of 76 results
Some fixes available 11 of 16
Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service (guest OS...
7 affected packages
kvm, qemu, qemu-kvm, xen, xen-3.1...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
kvm | — | — | — | — |
qemu | — | — | — | — |
qemu-kvm | — | — | — | — |
xen | — | — | — | — |
xen-3.1 | — | — | — | — |
xen-3.2 | — | — | — | — |
xen-3.3 | — | — | — | — |
Some fixes available 5 of 6
Multiple HVM control operations in Xen 3.4 through 4.2 allow local HVM guest OS administrators to cause a denial of service (physical CPU consumption) via a large input.
4 affected packages
xen, xen-3.1, xen-3.2, xen-3.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
xen | — | — | — | — |
xen-3.1 | — | — | — | — |
xen-3.2 | — | — | — | — |
xen-3.3 | — | — | — | — |
The get_page_from_gfn hypercall function in Xen 4.2 allows local PV guest OS administrators to cause a denial of service (crash) via a crafted GFN that triggers a buffer over-read.
4 affected packages
xen, xen-3.1, xen-3.2, xen-3.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
xen | — | — | — | — |
xen-3.1 | — | — | — | — |
xen-3.2 | — | — | — | — |
xen-3.3 | — | — | — | — |
Some fixes available 5 of 8
The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and (3) XENMEM_exchange hypercalls in Xen 4.2 and earlier allow local guest administrators to cause a denial of service (long loop and hang) via a crafted...
4 affected packages
xen, xen-3.1, xen-3.2, xen-3.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
xen | — | — | — | — |
xen-3.1 | — | — | — | — |
xen-3.2 | — | — | — | — |
xen-3.3 | — | — | — | — |
The guest_physmap_mark_populate_on_demand function in Xen 4.2 and earlier does not properly unlock the subject GFNs when checking if they are in use, which allows local guest HVM administrators to cause a denial of service (hang)...
4 affected packages
xen, xen-3.1, xen-3.2, xen-3.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
xen | — | — | — | — |
xen-3.1 | — | — | — | — |
xen-3.2 | — | — | — | — |
xen-3.3 | — | — | — | — |
Some fixes available 5 of 8
The XENMEM_exchange handler in Xen 4.2 and earlier does not properly check the memory address, which allows local PV guest OS administrators to cause a denial of service (crash) or possibly gain privileges via unspecified vectors...
4 affected packages
xen, xen-3.1, xen-3.2, xen-3.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
xen | — | — | — | — |
xen-3.1 | — | — | — | — |
xen-3.2 | — | — | — | — |
xen-3.3 | — | — | — | — |
Some fixes available 5 of 6
Stack-based buffer overflow in the dirty video RAM tracking functionality in Xen 3.4 through 4.1 allows local HVM guest OS administrators to cause a denial of service (crash) via a large bitmap image.
4 affected packages
xen, xen-3.1, xen-3.2, xen-3.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
xen | — | — | — | — |
xen-3.1 | — | — | — | — |
xen-3.2 | — | — | — | — |
xen-3.3 | — | — | — | — |
Some fixes available 1 of 6
Xen 4.1.1 and earlier allows local guest OS kernels with control of a PCI[E] device to cause a denial of service (CPU consumption and host hang) via many crafted DMA requests that are denied by the IOMMU, which triggers a livelock.
4 affected packages
xen, xen-3.1, xen-3.2, xen-3.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
xen | — | — | — | — |
xen-3.1 | — | — | — | — |
xen-3.2 | — | — | — | — |
xen-3.3 | — | — | — | — |
Some fixes available 2 of 4
The handle_mmio function in arch/x86/hvm/io.c in the MMIO operations emulator for Xen 3.3 and 4.x, when running an HVM guest, does not properly reset certain state information between emulation cycles, which allows local guest OS...
4 affected packages
xen, xen-3.1, xen-3.2, xen-3.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
xen | — | — | — | — |
xen-3.1 | — | — | — | — |
xen-3.2 | — | — | — | — |
xen-3.3 | — | — | — | — |
Some fixes available 3 of 6
Xen 4.0, and 4.1, when running a 64-bit PV guest on “older” AMD CPUs, does not properly protect against a certain AMD processor bug, which allows local guest OS users to cause a denial of service (host hang) via sequential...
4 affected packages
xen, xen-3.1, xen-3.2, xen-3.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
xen | — | — | — | — |
xen-3.1 | — | — | — | — |
xen-3.2 | — | — | — | — |
xen-3.3 | — | — | — | — |