Lucene search
Ubuntu.comUB:CVE-2013-1432HistoryAug 28, 2013 - 12:00 a.m.
CVE-2013-1432
2013-08-2800:00:00
ubuntu.com
ubuntu.com
13
7.4 High
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:M/Au:S/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
26.7%
Xen 4.1.x and 4.2.x, when the XSA-45 patch is in place, does not properly
maintain references on pages stored for deferred cleanup, which allows
local PV guest kernels to cause a denial of service (premature page free
and hypervisor crash) or possibly gain privileges via unspecified vectors.
Notes
| Author | Note |
|---|---|
| mdeslaur | hypervisor packages are in universe. For issues in the hypervisor, add appropriate tags to each section, ex: Tags_xen: universe-binary |
| seth-arnold | Incomplete / incorrect fix for CVE-2013-1918 |
| mdeslaur | This is XSA-58 4.1 and 4.2 only |
Related
nessus
nessus
Fedora 18 : xen-4.2.2-10.fc18 (2013-11874)
2013-07-12 00:00:00
Fedora 17 : xen-4.1.5-9.fc17 (2013-11871)
2013-07-12 00:00:00
Fedora 19 : xen-4.2.2-10.fc19 (2013-11837)
2013-07-12 00:00:00
xen
xen
Page reference counting error due to XSA-45/CVE-2013-1918 fixes
2013-06-26 12:00:00
Several long latency operations are not preemptible
2013-05-02 12:00:00
ubuntucve
ubuntucve
CVE-2013-1918
2013-05-13 00:00:00
nvd
nvd
CVE-2013-1432
2013-08-28 21:55:08
CVE-2013-1918
2013-05-13 23:55:01
cvelist
cvelist
CVE-2013-1432
2013-08-28 17:00:00
CVE-2013-1918
2013-05-13 23:00:00
prion
prion
Design/Logic Flaw
2013-05-13 23:55:00
Code injection
2013-08-28 21:55:00
debiancve
debiancve
CVE-2013-1432
2013-08-28 21:55:08
CVE-2013-1918
2013-05-13 23:55:01
cve
cve
CVE-2013-1918
2013-05-13 23:55:01
CVE-2013-1432
2013-08-28 21:55:08
fedora
fedora
[SECURITY] Fedora 19 Update: xen-4.2.2-10.fc19
2013-07-03 03:31:03
[SECURITY] Fedora 19 Update: xen-4.2.3-1.fc19
2013-09-19 02:08:09
[SECURITY] Fedora 19 Update: xen-4.2.3-2.fc19
2013-10-06 01:33:34
openvas
openvas
Fedora Update for xen FEDORA-2013-11837
2013-08-20 00:00:00
Fedora Update for xen FEDORA-2013-11837
2013-08-20 00:00:00
Fedora Update for xen FEDORA-2013-16357
2013-09-24 00:00:00
osv
osv
xen - several
2013-05-12 00:00:00
xen - security update
2014-08-18 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2666-1] xen security update
2013-06-05 00:00:00
Xen security vulnerabilities
2013-06-05 00:00:00
debian
debian
[SECURITY] [DSA 2666-1] xen security update
2013-05-12 13:53:35
[SECURITY] [DSA 3006-1] xen security update
2014-08-18 12:41:33
mageia
mageia
Updated xen package fixes security issues
2013-07-01 23:17:22
suse
suse
Security update for Xen (important)
2013-06-25 19:04:17
Security update for Xen (important)
2014-03-25 23:04:15
gentoo
gentoo
Xen: Multiple vulnerabilities
2013-09-27 00:00:00
7.4 High
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:M/Au:S/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
26.7%
Related for UB:CVE-2013-1432