[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-4131-1 xen -- xen

ID: oval:org.secpod.oval:def:603301Date: (C)2018-03-08   (M)2024-01-29
Class: PATCHFamily: unix




Multiple vulnerabilities have been discovered in the Xen hypervisor: CVE-2018-7540 Jann Horn discovered that missing checks in page table freeing may result in denial of service. CVE-2018-7541 Jan Beulich discovered that incorrect error handling in grant table checks may result in guest-to-host denial of service and potentially privilege escalation. CVE-2018-7542 Ian Jackson discovered that insufficient handling of x86 PVH guests without local APICs may result in guest-to-host denial of service.

Platform:
Debian 9.x
Product:
xen-hypervisor-4.8-amd64
libxen-dev
xen-hypervisor-4.8-arm64
xen-hypervisor-4.8-armhf
xen-system-armhf
xen-utils-4.8
xen-system-arm64
libxen-4.8
libxenstore3.0
xen-utils-common
xen-system-amd64
xenstore-utils
Reference:
DSA-4131-1
CVE-2018-7540
CVE-2018-7541
CVE-2018-7542
CVE    3
CVE-2018-7540
CVE-2018-7541
CVE-2018-7542
CPE    3
cpe:/o:debian:debian_linux:9.0
cpe:/a:xen:xen-utils-4.8
cpe:/o:debian:debian_linux:9.x

© SecPod Technologies