Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-1442HistorySep 30, 2013 - 9:55 p.m.
CVE-2013-1442
2013-09-3021:55:07
Debian Security Bug Tracker
security-tracker.debian.org
6
1.2 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
25.0%
Xen 4.0 through 4.3.x, when using AVX or LWP capable CPUs, does not properly clear previous data from registers when using an XSAVE or XRSTOR to extend the state components of a saved or restored vCPU after touching other restored extended registers, which allows local guest OSes to obtain sensitive information by reading the registers.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | xen | < 4.4.0-1 | xen_4.4.0-1_all.deb |
| Debian | 11 | all | xen | < 4.4.0-1 | xen_4.4.0-1_all.deb |
| Debian | 999 | all | xen | < 4.4.0-1 | xen_4.4.0-1_all.deb |
| Debian | 13 | all | xen | < 4.4.0-1 | xen_4.4.0-1_all.deb |
Related
xen
xen
Information leak on AVX and/or LWP capable CPUs
2013-09-24 12:00:00
nessus
nessus
Fedora 19 : xen-4.2.3-2.fc19 (2013-17704)
2013-10-06 00:00:00
Fedora 18 : xen-4.2.3-2.fc18 (2013-17689)
2013-10-06 00:00:00
Fedora 20 : xen-4.3.0-6.fc20 (2013-17723)
2013-10-10 00:00:00
ubuntucve
ubuntucve
CVE-2013-1442
2013-09-30 00:00:00
cvelist
cvelist
CVE-2013-1442
2013-09-30 19:00:00
nvd
nvd
CVE-2013-1442
2013-09-30 21:55:07
cve
cve
CVE-2013-1442
2013-09-30 21:55:07
fedora
fedora
[SECURITY] Fedora 20 Update: xen-4.3.0-6.fc20
2013-10-09 14:43:15
[SECURITY] Fedora 19 Update: xen-4.2.3-2.fc19
2013-10-06 01:33:34
[SECURITY] Fedora 19 Update: xen-4.2.3-3.fc19
2013-10-14 07:01:40
prion
prion
Design/Logic Flaw
2013-09-30 21:55:00
openvas
openvas
Fedora Update for xen FEDORA-2013-17704
2013-10-08 00:00:00
Fedora Update for xen FEDORA-2013-17704
2013-10-08 00:00:00
Fedora Update for xen FEDORA-2013-18378
2013-10-15 00:00:00
osv
osv
xen - security update
2014-08-18 00:00:00
debian
debian
[SECURITY] [DSA 3006-1] xen security update
2014-08-18 12:41:33
gentoo
gentoo
Xen: Multiple Vunlerabilities
2014-07-16 00:00:00
suse
suse
Security update for Xen (important)
2014-03-25 23:04:15
1.2 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
25.0%
Related for DEBIANCVE:CVE-2013-1442