Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DLA-571-1
HistoryJul 30, 2016 - 12:00 a.m.

xen - security update

2016-07-3000:00:00
Google
osv.dev
23

EPSS

0.009

Percentile

83.1%

JSON

Multiple vulnerabilities have been discovered in the Xen hypervisor. The
Common Vulnerabilities and Exposures project identifies the following
problems:

Andrew Sorensen discovered that a HVM domain can exhaust the hosts
disk space by filling up the log file.

Jan Beulich from SUSE discovered that Xen does not properly handle
writes to the hardware FSW.ES bit when running on AMD64 processors.
A malicious domain can take advantage of this flaw to obtain address
space usage and timing information, about another domain, at a
fairly low rate.

Wei Xiao and Qinghao Tang of 360.cn Inc discovered an out-of-bounds
read and write flaw in the QEMU VGA module. A privileged guest user
could use this flaw to execute arbitrary code on the host with the
privileges of the hosting QEMU process.

Zuozhi Fzz of Alibaba Inc discovered potential integer overflow
or out-of-bounds read access issues in the QEMU VGA module. A
privileged guest user could use this flaw to mount a denial of
service (QEMU process crash).

Ling Liu and Yihan Lian of the Cloud Security Team, Qihoo 360
discovered an integer overflow in the x86 shadow pagetable code. A
HVM guest using shadow pagetables can cause the host to crash. A PV
guest using shadow pagetables (i.e. being migrated) with PV
superpages enabled (which is not the default) can crash the host, or
corrupt hypervisor memory, potentially leading to privilege
escalation.

Jan Beulich discovered that incorrect page table handling could
result in privilege escalation inside a Xen guest instance.

JĂŠrĂŠmie Boutoille discovered that incorrect pagetable handling in
PV instances could result in guest to host privilege escalation.

  • Additionally this Xen Security Advisory without a CVE was fixed: XSA-166

Konrad Rzeszutek Wilk and Jan Beulich discovered that ioreq handling
is possibly susceptible to a multiple read issue.

For Debian 7 Wheezy, these problems have been fixed in version
4.1.6.lts1-1.

We recommend that you upgrade your xen packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: <https://wiki.debian.org/LTS&gt;

Related

debian 8
openvas 29
nessus 57
osv 5
fedora 9
xen 6
suse 6
freebsd 5
oraclelinux 4
debiancve 8
redhatcve 4
ubuntucve 7
nvd 8
prion 8
cvelist 7
cve 8
centos 4
veracode 2
redhat 11
mageia 1
archlinux 2
debian
debian
[SECURITY] [DLA 571-1] xen security update
2016-07-30 09:09:30
[SECURITY] [DSA 3554-1] xen security update
2016-04-21 19:46:04
[SECURITY] [DSA 3554-1] xen security update
2016-04-21 19:46:04
openvas
openvas
Debian: Security Advisory (DLA-571-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3554-1)
2016-04-20 00:00:00
Fedora Update for xen FEDORA-2016-8fd9019541
2016-06-08 00:00:00
nessus
nessus
Debian DLA-571-1 : xen security update (Bunker Buster)
2016-08-01 00:00:00
OracleVM 3.4 : xen (OVMSA-2016-0088) (Bunker Buster)
2016-07-28 00:00:00
OracleVM 3.2 : xen (OVMSA-2016-0090)
2016-07-28 00:00:00
osv
osv
xen - security update
2016-04-21 00:00:00
qemu - security update
2016-05-09 00:00:00
qemu-kvm - security update
2016-07-01 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: xen-4.5.3-5.fc22
2016-05-28 23:24:56
[SECURITY] Fedora 22 Update: xen-4.5.3-1.fc22
2016-04-09 14:23:52
[SECURITY] Fedora 23 Update: xen-4.5.3-1.fc23
2016-04-09 14:27:05
xen
xen
broken AMD FPU FIP/FDP/FOP leak workaround
2016-03-24 16:26:00
QEMU: Banked access to VGA memory (VBE) uses inconsistent bounds checks
2016-05-09 11:48:00
x86: Privilege escalation in PV guests
2016-07-26 11:32:00
suse
suse
Security update for xen (important)
2016-10-13 20:08:40
Security update for xen (important)
2016-11-04 15:11:21
Security update for xen (important)
2016-08-18 18:09:54
freebsd
freebsd
xen-tools -- QEMU: Banked access to VGA memory (VBE) uses inconsistent bounds checks
2016-05-09 00:00:00
xen-kernel -- x86: Privilege escalation in PV guests
2016-07-26 00:00:00
xen-kernel -- x86 software guest page walk PS bit handling flaw
2016-05-17 00:00:00
oraclelinux
oraclelinux
qemu-kvm security update
2016-08-09 00:00:00
qemu-kvm security update
2016-05-09 00:00:00
qemu-kvm security, bug fix, and enhancement update
2016-11-09 00:00:00
debiancve
debiancve
CVE-2016-6258
2016-08-02 16:59:08
CVE-2016-4480
2016-05-18 14:59:05
CVE-2016-3960
2016-04-19 14:59:03
redhatcve
redhatcve
CVE-2016-6258
2016-07-26 13:48:17
CVE-2016-4480
2016-05-17 14:18:26
CVE-2014-3672
2016-05-24 08:48:21
ubuntucve
ubuntucve
CVE-2016-6258
2016-08-02 00:00:00
CVE-2016-4480
2016-05-18 00:00:00
CVE-2014-3672
2016-05-25 00:00:00
nvd
nvd
CVE-2016-6258
2016-08-02 16:59:08
CVE-2016-4480
2016-05-18 14:59:05
CVE-2016-3960
2016-04-19 14:59:03
prion
prion
Code injection
2016-08-02 16:59:00
Memory corruption
2016-05-18 14:59:00
Integer overflow
2016-04-19 14:59:00
cvelist
cvelist
CVE-2016-6258
2016-08-02 16:00:00
CVE-2016-4480
2016-05-18 14:00:00
CVE-2016-3960
2016-04-19 14:00:00
cve
cve
CVE-2016-6258
2016-08-02 16:59:08
CVE-2016-4480
2016-05-18 14:59:05
CVE-2016-3710
2016-05-11 21:59:01
centos
centos
qemu security update
2016-05-16 10:25:54
libcacard, qemu security update
2016-05-09 16:33:09
qemu security update
2017-03-24 15:42:25
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:11:18
Denial Of Service (DoS)
2019-01-15 09:16:25
redhat
redhat
(RHSA-2016:0725) Important: qemu-kvm-rhev security update
2016-05-09 14:56:49
(RHSA-2016:1002) Important: qemu-kvm-rhev security update
2016-05-10 04:47:30
(RHSA-2016:0999) Important: qemu-kvm-rhev security update
2016-05-10 04:42:19
mageia
mageia
Updated xen packages fix security vulnerability
2017-01-09 23:29:57
archlinux
archlinux
qemu: multiple issues
2016-06-08 00:00:00
qemu-arch-extra: multiple issues
2016-06-08 00:00:00

EPSS

0.009

Percentile

83.1%

JSON
Related for OSV:DLA-571-1
debian8openvas29nessus57osv5fedora9xen6suse6freebsd5oraclelinux4debiancve8redhatcve4ubuntucve7nvd8prion8cvelist7cve8centos4veracode2redhat11mageia1archlinux2