xen (SUSE:Linux Enterprise Server 12 SP2) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 12 SP2 package xen, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (63)
CVE-2017-15597 — CVSS 9.1 (critical): An issue was discovered in Xen through 4.9.x. Grant copying code made an implication that any grant pin would be accompanied by a suitable…
CVE-2017-12137 — CVSS 8.8 (high): arch/x86/mm.c in Xen allows local PV guest OS users to gain host OS privileges via vectors related to map_grant_ref.
CVE-2017-12135 — CVSS 8.8 (high): Xen allows local OS guest users to cause a denial of service (crash) or possibly obtain sensitive information or gain privileges via…
CVE-2017-15595 — CVSS 8.8 (high): An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (unbounded recursion, stack…
CVE-2017-15594 — CVSS 8.8 (high): An issue was discovered in Xen through 4.9.x allowing x86 SVM PV guest OS users to cause a denial of service (hypervisor crash) or gain…
CVE-2016-9383 — CVSS 8.8 (high): Xen, when running on a 64-bit hypervisor, allows local x86 guest OS users to modify arbitrary memory and consequently obtain sensitive…
CVE-2018-7541 — CVSS 8.8 (high): An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service (hypervisor crash) or gain privileges by…
CVE-2017-15592 — CVSS 8.8 (high): An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to cause a denial of service (hypervisor crash) or possibly…
CVE-2017-15590 — CVSS 8.8 (high): An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service (hypervisor crash) or possibly gain…
CVE-2017-14319 — CVSS 8.8 (high): A grant unmapping issue was discovered in Xen through 4.9.x. When removing or replacing a grant mapping, the x86 PV specific path needs to…
CVE-2017-14316 — CVSS 8.8 (high): A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first…
CVE-2017-7228 — CVSS 8.2 (high): An issue (known as XSA-212) was discovered in Xen, with fixes available for 4.8.x, 4.7.x, 4.6.x, 4.5.x, and 4.4.x. The earlier XSA-29 fix…
CVE-2016-9379 — CVSS 7.9 (high): The pygrub boot loader emulator in Xen, when S-expression output format is requested, allows local pygrub-using guest OS administrators to…
CVE-2017-17564 — CVSS 7.8 (high): An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service (host OS crash) or gain host OS…
CVE-2017-17563 — CVSS 7.8 (high): An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service (host OS crash) or gain host OS…
CVE-2017-12136 — CVSS 7.8 (high): Race condition in the grant table code in Xen 4.6.x through 4.9.x allows local guest OS administrators to cause a denial of service (free…
CVE-2016-9386 — CVSS 7.8 (high): The x86 emulator in Xen does not properly treat x86 NULL segments as unusable when accessing memory, which might allow local HVM guest…
CVE-2017-15588 — CVSS 7.8 (high): An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to execute arbitrary code on the host OS because of a race…
CVE-2016-9382 — CVSS 7.8 (high): Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or…
CVE-2016-10013 — CVSS 7.8 (high): Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to gain privileges by leveraging mishandling of SYSCALL singlestep during…
CVE-2017-17566 — CVSS 7.8 (high): An issue was discovered in Xen through 4.9.x allowing PV guest OS users to cause a denial of service (host OS crash) or gain host OS…
CVE-2017-10664 — CVSS 7.5 (high): qemu-nbd in QEMU (aka Quick Emulator) does not ignore SIGPIPE, which allows remote attackers to cause a denial of service (daemon crash) by…
CVE-2016-9637 — CVSS 7.5 (high): The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest…
CVE-2017-8309 — CVSS 7.5 (high): Memory leak in the audio/audio.c in QEMU (aka Quick Emulator) allows remote attackers to cause a denial of service (memory consumption) by…
CVE-2016-9380 — CVSS 7.5 (high): The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to…
CVE-2016-9381 — CVSS 7.5 (high): Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to gain privileges by changing certain data on shared rings, aka…
CVE-2017-6505 — CVSS 6.5 (medium): The ohci_service_ed_list function in hw/usb/hcd-ohci.c in QEMU (aka Quick Emulator) before 2.9.0 allows local guest OS users to cause a…
CVE-2016-9384 — CVSS 6.5 (medium): Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF symbol table.
CVE-2016-9921 — CVSS 6.5 (medium): Quick emulator (Qemu) built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to a divide by zero issue. It could occur while…
CVE-2017-12855 — CVSS 6.5 (medium): Xen maintains the _GTF_{read,writ}ing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify…
CVE-2017-14318 — CVSS 6.5 (medium): An issue was discovered in Xen 4.5.x through 4.9.x. The function `__gnttab_cache_flush` handles GNTTABOP_cache_flush grant table…
CVE-2017-15589 — CVSS 6.5 (medium): An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to obtain sensitive information from the host OS (or an…
CVE-2017-15591 — CVSS 6.5 (medium): An issue was discovered in Xen 4.5.x through 4.9.x allowing attackers (who control a stub domain kernel or tool stack) to cause a denial of…
CVE-2017-15593 — CVSS 6.5 (medium): An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (memory leak) because reference…
CVE-2017-5526 — CVSS 6.5 (medium): Memory leak in hw/audio/es1370.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host…
CVE-2018-7540 — CVSS 6.5 (medium): An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS users to cause a denial of service (host OS CPU hang) via…
CVE-2016-7777 — CVSS 6.3 (medium): Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or…
CVE-2016-10024 — CVSS 6.0 (medium): Xen through 4.8.x allows local x86 PV guest OS kernel administrators to cause a denial of service (host hang or crash) by modifying the…
CVE-2018-5683 — CVSS 6.0 (medium): The vga_draw_text function in Qemu allows local OS guest privileged users to cause a denial of service (out-of-bounds read and QEMU process…
CVE-2016-9385 — CVSS 6.0 (medium): The x86 segment base write emulation functionality in Xen 4.4.x through 4.7.x allows local x86 PV guest OS administrators to cause a denial…
CVE-2016-8910 — CVSS 6.0 (medium): The rtl8139_cplus_transmit function in hw/net/rtl8139.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial…
CVE-2016-8669 — CVSS 6.0 (medium): The serial_update_parameters function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a…
CVE-2016-8667 — CVSS 6.0 (medium): The rc4030_write function in hw/dma/rc4030.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service…
CVE-2017-15289 — CVSS 6.0 (medium): The mode4and5 write functions in hw/display/cirrus_vga.c in Qemu allow local OS guest privileged users to cause a denial of service…
CVE-2017-9330 — CVSS 5.6 (medium): QEMU (aka Quick Emulator) before 2.9.0, when built with the USB OHCI Emulation support, allows local guest OS users to cause a denial of…
CVE-2017-5753 — CVSS 5.6 (medium): Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an…
CVE-2017-5754 — CVSS 5.6 (medium): Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of…
CVE-2017-5715 — CVSS 5.6 (medium): Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of…
CVE-2017-14317 — CVSS 5.6 (medium): A domain cleanup issue was discovered in the C xenstore daemon (aka cxenstored) in Xen through 4.9.x. When shutting down a VM with a…
CVE-2017-17565 — CVSS 5.6 (medium): An issue was discovered in Xen through 4.9.x allowing PV guest OS users to cause a denial of service (host OS crash) if shadow mode and…
CVE-2016-9922 — CVSS 5.5 (medium): The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka Quick Emulator), when cirrus graphics mode is VGA, allows local guest…
CVE-2016-9603 — CVSS 5.5 (medium): A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support before 2.9; the issue could…
CVE-2016-9378 — CVSS 5.5 (medium): Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when emulating instructions that generate software interrupts, allows…
CVE-2016-9377 — CVSS 5.5 (medium): Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when emulating instructions that generate software interrupts, allows…
CVE-2017-2615 — CVSS 5.5 (medium): Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur…
CVE-2017-2620 — CVSS 5.5 (medium): Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The…
CVE-2017-11434 — CVSS 5.5 (medium): The dhcp_decode function in slirp/bootp.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service…
CVE-2017-7718 — CVSS 5.5 (medium): hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds…
CVE-2016-10025 — CVSS 5.5 (medium): VMFUNC emulation in Xen 4.6.x through 4.8.x on x86 systems using AMD virtualization extensions (aka SVM) allows local HVM guest OS users to…
CVE-2016-7909 — CVSS 4.4 (medium): The pcnet_rdra_addr function in hw/net/pcnet.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of…
CVE-2016-7908 — CVSS 4.4 (medium): The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when…
CVE-2017-18030 — CVSS 4.4 (medium): The cirrus_invalidate_region function in hw/display/cirrus_vga.c in Qemu allows local OS guest privileged users to cause a denial of…
CVE-2016-9932 — CVSS 3.3 (low): CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host…