Lucene search
GoogleOSV:DSA-2636-1HistoryMar 03, 2013 - 12:00 a.m.
xen - several
2013-03-0300:00:00
Google
osv.dev
18
0.002 Low
EPSS
Percentile
62.2%
Multiple vulnerabilities have been discovered in the Xen hypervisor.
The Common Vulnerabilities and Exposures project identifies the following
problems:
- CVE-2012-4544
Insufficient validation of kernel or ramdisk sizes in the Xen PV
domain builder could result in denial of service. - CVE-2012-5511
Several HVM control operations performed insufficient validation of
input, which could result in denial of service through resource
exhaustion. - CVE-2012-5634
Incorrect interrupt handling when using VT-d hardware could result
in denial of service. - CVE-2013-0153
Insufficient restriction of interrupt access could result in denial
of service.
For the stable distribution (squeeze), these problems have been fixed in
version 4.0.1-5.8.
For the testing distribution (wheezy), these problems have been fixed in
version 4.1.4-2.
For the unstable distribution (sid), these problems have been fixed in
version 4.1.4-2.
We recommend that you upgrade your xen packages.
References
Related
openvas
openvas
Debian Security Advisory DSA 2636-2 (xen - several vulnerabilities)
2013-03-03 00:00:00
Debian: Security Advisory (DSA-2636-1)
2013-03-02 00:00:00
RedHat Update for xen RHSA-2013:0241-01
2013-02-08 00:00:00
debian
debian
[SECURITY] [DSA 2636-2] xen regression update
2013-03-03 11:28:23
[SECURITY] [DSA 2636-1] xen security update
2013-03-01 19:23:57
nessus
nessus
Debian DSA-2636-2 : xen - several vulnerabilities
2013-03-04 00:00:00
Fedora 18 : xen-4.2.1-3.fc18 (2013-0627)
2013-01-23 00:00:00
openSUSE Security Update : xen (openSUSE-SU-2013:0636-1)
2014-06-13 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2636-1] xen security update
2013-03-11 00:00:00
xen multiple security vulnerabilities
2013-03-11 00:00:00
cve
cve
xen
xen
VT-d interrupt remapping source validation flaw
2013-01-08 12:00:00
interrupt remap entries shared and old ones not cleared on AMD IOMMUs
2013-02-05 12:00:00
several HVM operations do not validate the range of their inputs
2012-12-03 17:51:00
prion
prion
Design/Logic Flaw
2013-02-14 22:55:00
Design/Logic Flaw
2013-02-14 22:55:00
Design/Logic Flaw
2012-10-31 16:55:00
ubuntucve
ubuntucve
nvd
nvd
debiancve
debiancve
cvelist
cvelist
oraclelinux
oraclelinux
xen security update
2013-02-07 00:00:00
kernel security and bug fix update
2013-05-21 00:00:00
1
2013-05-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:55:47
redhat
redhat
(RHSA-2013:0241) Moderate: xen security update
2013-02-07 00:00:00
(RHSA-2013:0847) Moderate: kernel security and bug fix update
2013-05-21 00:00:00
centos
centos
xen security update
2013-02-07 21:02:50
kernel security update
2013-05-22 00:42:18
fedora
fedora
[SECURITY] Fedora 18 Update: xen-4.2.0-3.fc18
2012-11-14 01:57:31
[SECURITY] Fedora 18 Update: xen-4.2.1-3.fc18
2013-01-23 02:05:39
[SECURITY] Fedora 18 Update: xen-4.2.1-7.fc18
2013-02-18 06:49:37
suse
suse
xen to fix various denial of service issues (important)
2013-01-23 14:05:00
Security update for Xen (important)
2012-11-16 17:08:43
Security update for Xen (important)
2012-11-16 00:09:20