xen xen 3.3.0 vulnerabilities and exploits

(subscribe to this query)

The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest's kernel boot parameters wi...

Xen Xen 3.0.3 Xen Xen 3.3.0 Xen Xen 3.3.1

1 EDB exploit

Multiple integer overflows in tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allow local users to cause a denial of service and possibly execute arbitrary code via a crafted paravirtualised guest kernel image that triggers (1) a buffer overflow during a decompre...

Citrix Xen 3.2.0 Citrix Xen 3.3.0 Citrix Xen 4.0.0 Citrix Xen 4.1.0

tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allows local users to cause a denial of service (management software infinite loop and management domain resource consumption) via unspecified vectors related to "Lack of error checking in the decompression loo...

Citrix Xen 3.2.0 Citrix Xen 3.3.0 Citrix Xen 4.0.0 Citrix Xen 4.1.0

The AMD IOMMU support in Xen 4.2.x, 4.1.x, 3.3, and other versions, when using AMD-Vi for PCI passthrough, uses the same interrupt remapping table for the host and all guests, which allows guests to cause a denial of service by injecting an interrupt into other guests.

Xen Xen 4.2.0 Xen Xen 4.2.1 Xen Xen 4.1.0 Xen Xen 4.1.1 Xen Xen 4.1.2 Xen Xen 4.1.3 Xen Xen 4.1.4 Xen Xen 3.3.0

The handle_mmio function in arch/x86/hvm/io.c in the MMIO operations emulator for Xen 3.3 and 4.x, when running an HVM guest, does not properly reset certain state information between emulation cycles, which allows local guest OS users to cause a denial of service (guest OS crash...

Xen Xen 3.3.0 Xen Xen 4.0.0 Xen Xen 4.0.1 Xen Xen 4.0.2 Xen Xen 4.0.3 Xen Xen 4.0.4 Xen Xen 4.1.0 Xen Xen 4.1.1 Xen Xen 4.1.2 Xen Xen 4.1.3 Xen Xen 4.2.0

xend in Xen 3.3.0 does not properly restrict a guest VM's write access within the /local/domain xenstore directory tree, which allows guest OS users to cause a denial of service and possibly have unspecified other impact by writing to (1) console/tty, (2) console/limit, or (...

Citrix Xen 3.3.0

The hypervisor_callback function in Xen, possibly prior to 3.4.0, as applied to the Linux kernel 2.6.30-rc4, 2.6.18, and probably other versions allows guest user applications to cause a denial of service (kernel oops) of the guest OS by triggering a segmentation fault in "c...

Xen Xen Xen Xen 2.0 Xen Xen 3.0.2 Xen Xen 3.0.3 Xen Xen 3.0.4 Xen Xen 3.1.2 Xen Xen 3.1.3 Xen Xen 3.1.4 Xen Xen 3.2 Xen Xen 3.2.0 Xen Xen 3.2.1 Xen Xen 3.2.2

The do_block_io_op function in (1) drivers/xen/blkback/blkback.c and (2) drivers/xen/blktap/blktap.c in Xen prior to 3.4.0 for the Linux kernel 2.6.18, and possibly other versions, allows guest OS users to cause a denial of service (infinite loop and CPU consumption) via a large ...

Citrix Xen Citrix Xen 3.0.2 Citrix Xen 3.0.3 Citrix Xen 3.0.4 Citrix Xen 3.1.3 Citrix Xen 3.1.4 Citrix Xen 3.2.0 Citrix Xen 3.2.1 Citrix Xen 3.2.2 Citrix Xen 3.2.3 Citrix Xen 3.3.0 Citrix Xen 3.3.1

The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 3.3.x up to and including 4.4.x does not check the supervisor mode permissions for instructions that generate software interrupts, which allows local HVM guest users to cause a denial of service (guest crash) v...

Xen Xen 3.3.0 Xen Xen 3.3.1 Xen Xen 3.3.2 Xen Xen 4.1.0 Xen Xen 4.1.1 Xen Xen 4.1.2 Xen Xen 4.1.3 Xen Xen 4.1.4 Xen Xen 4.1.5 Xen Xen 4.1.6.1 Xen Xen 4.2.0 Xen Xen 4.2.1

Xen, possibly prior to 4.0.2, allows local 64-bit PV guests to cause a denial of service (host crash) by specifying user mode execution without user-mode pagetables.

Xen Xen Xen Xen 3.0.2 Xen Xen 3.0.3 Xen Xen 3.0.4 Xen Xen 3.1.3 Xen Xen 3.1.4 Xen Xen 3.2.0 Xen Xen 3.2.1 Xen Xen 3.2.2 Xen Xen 3.2.3 Xen Xen 3.3.0 Xen Xen 3.3.1

1 2 3 4 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook