Information on source package xen

Available versions

ReleaseVersion
jessie4.4.4lts5-0+deb8u1
stretch4.8.5.final+shim4.10.4-1+deb9u12
buster4.11.4+107-gef32c7afa2-1
bullseye4.14.6-1
bullseye (security)4.14.5+94-ge49571868d-1
bookworm4.17.3+10-g091466ba55-1~deb12u1
trixie4.17.3+36-g54dacb5c02-1
sid4.17.3+36-g54dacb5c02-1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-53241vulnerablevulnerablevulnerableunknownunknownunknownunknownXen hypercall page unsafe against speculative attacks
CVE-2024-45819vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerablePVH guests have their ACPI tables constructed by the toolstack. The c ...
CVE-2024-45818vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableThe hypervisor contains code to accelerate VGA memory accesses for HVM ...
CVE-2024-45817vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableIn x86's APIC (Advanced Programmable Interrupt Controller) architectur ...
CVE-2024-31146vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableWhen multiple devices share resources and one of them is to be passed ...
CVE-2024-31145vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableCertain PCI devices in a system might be assigned Reserved Memory Regi ...
CVE-2024-31143vulnerablevulnerablevulnerablevulnerablevulnerable (no DSA, postponed)vulnerablevulnerableAn optional feature of PCI MSI called "Multiple Message" allows a devi ...
CVE-2024-31142vulnerablevulnerablevulnerablevulnerablevulnerable (no DSA, postponed)vulnerablevulnerableBecause of a logical error in XSA-407 (Branch Type Confusion), the mit ...
CVE-2024-2201vulnerablevulnerablevulnerablevulnerablevulnerable (no DSA, postponed)vulnerablevulnerableA cross-privilege Spectre v2 vulnerability allows attackers to bypass ...
CVE-2024-2193vulnerablevulnerablevulnerablevulnerablevulnerable (no DSA, postponed)vulnerablevulnerableA Speculative Race Condition (SRC) vulnerability that impacts modern C ...
CVE-2023-46842vulnerablevulnerablefixedvulnerablevulnerable (no DSA, postponed)vulnerablevulnerableUnlike 32-bit PV guests, HVM guests may switch freely between 64-bit a ...
CVE-2023-46841vulnerablevulnerablefixedvulnerablevulnerable (no DSA, postponed)fixedfixedRecent x86 CPUs offer functionality named Control-flow Enforcement Tec ...
CVE-2023-46840vulnerablevulnerablefixedfixedfixedfixedfixedIncorrect placement of a preprocessor directive in source code results ...
CVE-2023-46839vulnerablevulnerablevulnerablevulnerablefixedfixedfixedPCI devices can make use of a functionality called phantom functions, ...
CVE-2023-46837vulnerablevulnerablevulnerablevulnerablefixedfixedfixedArm provides multiple helpers to clean & invalidate the cache for a gi ...
CVE-2023-46836vulnerablevulnerablevulnerablevulnerablefixedfixedfixedThe fixes for XSA-422 (Branch Type Confusion) and XSA-434 (Speculative ...
CVE-2023-46835vulnerablevulnerablevulnerablevulnerablefixedfixedfixedThe current setup of the quarantine page tables assumes that the quara ...
CVE-2023-34328vulnerablevulnerablevulnerablevulnerablefixedfixedfixed[This CNA information record relates to multiple CVEs; the text explai ...
CVE-2023-34327vulnerablevulnerablevulnerablevulnerablefixedfixedfixed[This CNA information record relates to multiple CVEs; the text explai ...
CVE-2023-34326vulnerablevulnerablevulnerablevulnerablefixedfixedfixedThe caching invalidation guidelines from the AMD-Vi specification (488 ...
CVE-2023-34325vulnerablevulnerablevulnerablevulnerablefixedfixedfixed[This CNA information record relates to multiple CVEs; the text explai ...
CVE-2023-34323vulnerablevulnerablevulnerablevulnerablefixedfixedfixedWhen a transaction is committed, C Xenstored will first check the quot ...
CVE-2023-34322vulnerablevulnerablevulnerablevulnerablefixedfixedfixedFor migration as well as to work around kernels unaware of L1TF (see X ...
CVE-2023-34321vulnerablevulnerablevulnerablevulnerablefixedfixedfixedArm provides multiple helpers to clean & invalidate the cache for a gi ...
CVE-2023-34320vulnerablevulnerablevulnerablevulnerablefixedfixedfixedCortex-A77 cores (r0p0 and r1p0) are affected by erratum 1508412 where ...
CVE-2023-28746vulnerablevulnerablevulnerablevulnerablevulnerable (no DSA, postponed)vulnerablevulnerableInformation exposure through microarchitectural state after transient ...
CVE-2023-20593vulnerablevulnerableunknownunknownunknownunknownunknownAn issue in \u201cZen 2\u201d CPUs, under specific microarchitectural ...
CVE-2023-20588vulnerablevulnerablevulnerablevulnerablefixedfixedfixedA division-by-zero error on some AMD processors can potentially return ...
CVE-2022-42336vulnerablevulnerablefixedfixedfixedfixedfixedMishandling of guest SSBD selection on AMD hardware The current logic ...
CVE-2022-42335vulnerablevulnerablefixedfixedfixedfixedfixedx86 shadow paging arbitrary pointer dereference In environments where ...
CVE-2022-42334vulnerablevulnerablevulnerablefixedfixedfixedfixedx86/HVM pinned cache attributes mis-handling T[his CNA information rec ...
CVE-2022-42333vulnerablevulnerablevulnerablefixedfixedfixedfixedx86/HVM pinned cache attributes mis-handling T[his CNA information rec ...
CVE-2022-42332vulnerablevulnerablevulnerablefixedfixedfixedfixedx86 shadow plus log-dirty mode use-after-free In environments where ho ...
CVE-2022-42331vulnerablevulnerablevulnerablefixedfixedfixedfixedx86: speculative vulnerability in 32bit SYSCALL path Due to an oversig ...
CVE-2022-42330vulnerablevulnerablefixedfixedfixedfixedfixedGuests can cause Xenstore crash via soft reset When a guest issues a " ...
CVE-2022-42327vulnerablevulnerablefixedfixedfixedfixedfixedx86: unintended memory sharing between guests On Intel systems that su ...
CVE-2022-42326vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: Guests can create arbitrary number of nodes via transactions ...
CVE-2022-42325vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: Guests can create arbitrary number of nodes via transactions ...
CVE-2022-42324vulnerablevulnerablevulnerablefixedfixedfixedfixedOxenstored 32->31 bit integer truncation issues Integers in Ocaml are ...
CVE-2022-42323vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: Cooperating guests can create arbitrary numbers of nodes T[h ...
CVE-2022-42322vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: Cooperating guests can create arbitrary numbers of nodes T[h ...
CVE-2022-42321vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: Guests can crash xenstored via exhausting the stack Xenstore ...
CVE-2022-42320vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: Guests can get access to Xenstore nodes of deleted domains A ...
CVE-2022-42319vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: Guests can cause Xenstore to not free temporary memory When ...
CVE-2022-42318vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: guests can let run xenstored out of memory T[his CNA informa ...
CVE-2022-42317vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: guests can let run xenstored out of memory T[his CNA informa ...
CVE-2022-42316vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: guests can let run xenstored out of memory T[his CNA informa ...
CVE-2022-42315vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: guests can let run xenstored out of memory T[his CNA informa ...
CVE-2022-42314vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: guests can let run xenstored out of memory T[his CNA informa ...
CVE-2022-42313vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: guests can let run xenstored out of memory T[his CNA informa ...
CVE-2022-42312vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: guests can let run xenstored out of memory T[his CNA informa ...
CVE-2022-42311vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: guests can let run xenstored out of memory T[his CNA informa ...
CVE-2022-42310vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: Guests can create orphaned Xenstore nodes By creating multip ...
CVE-2022-42309vulnerablevulnerablevulnerablefixedfixedfixedfixedXenstore: Guests can crash xenstored Due to a bug in the fix of XSA-11 ...
CVE-2022-33748vulnerablevulnerablevulnerablefixedfixedfixedfixedlock order inversion in transitive grant copy handling As part of XSA- ...
CVE-2022-33747vulnerablevulnerablevulnerablefixedfixedfixedfixedArm: unbounded memory consumption for 2nd-level page tables Certain ac ...
CVE-2022-33746vulnerablevulnerablevulnerablefixedfixedfixedfixedP2M pool freeing may take excessively long The P2M pool backing second ...
CVE-2022-33745vulnerablevulnerablevulnerablefixedfixedfixedfixedinsufficient TLB flush for x86 PV guests in shadow mode For migration ...
CVE-2022-33744vulnerableunknownunknownunknownunknownunknownunknownArm guests can cause Dom0 DoS via PV devices When mapping pages of gue ...
CVE-2022-33743vulnerableunknownunknownunknownunknownunknownunknownnetwork backend may cause Linux netfront to use freed SKBs While addin ...
CVE-2022-33742vulnerablevulnerablevulnerablevulnerable (no DSA, ignored)fixedfixedfixedLinux disk/nic frontends data leaks T[his CNA information record relat ...
CVE-2022-33741vulnerablevulnerablevulnerablevulnerable (no DSA, ignored)fixedfixedfixedLinux disk/nic frontends data leaks T[his CNA information record relat ...
CVE-2022-33740vulnerablevulnerablevulnerablevulnerable (no DSA, ignored)fixedfixedfixedLinux disk/nic frontends data leaks T[his CNA information record relat ...
CVE-2022-29900vulnerablevulnerablevulnerablefixedfixedfixedfixedMis-trained branch predictions for return instructions may allow arbit ...
CVE-2022-27672vulnerablevulnerablefixedfixedfixedfixedfixedWhen SMT is enabled, certain AMD processors may speculatively execute ...
CVE-2022-26365vulnerablevulnerablevulnerablevulnerable (no DSA, ignored)fixedfixedfixedLinux disk/nic frontends data leaks T[his CNA information record relat ...
CVE-2022-26364vulnerablevulnerablevulnerablefixedfixedfixedfixedx86 pv: Insufficient care with non-coherent mappings T[his CNA informa ...
CVE-2022-26363vulnerablevulnerablevulnerablefixedfixedfixedfixedx86 pv: Insufficient care with non-coherent mappings T[his CNA informa ...
CVE-2022-26362vulnerablevulnerablevulnerablefixedfixedfixedfixedx86 pv: Race condition in typeref acquisition Xen maintains a type ref ...
CVE-2022-26361vulnerablevulnerablevulnerablefixedfixedfixedfixedIOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues T[his CNA in ...
CVE-2022-26360vulnerablevulnerablevulnerablefixedfixedfixedfixedIOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues T[his CNA in ...
CVE-2022-26359vulnerablevulnerablevulnerablefixedfixedfixedfixedIOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues T[his CNA in ...
CVE-2022-26358vulnerablevulnerablevulnerablefixedfixedfixedfixedIOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues T[his CNA in ...
CVE-2022-26357vulnerablevulnerablevulnerablefixedfixedfixedfixedrace in VT-d domain ID cleanup Xen domain IDs are up to 15 bits wide. ...
CVE-2022-26356vulnerablevulnerablevulnerablefixedfixedfixedfixedRacy interactions between dirty vram tracking and paging log dirty hyp ...
CVE-2022-23825vulnerablevulnerablevulnerablefixedfixedfixedfixedAliases in the branch predictor may cause some AMD processors to predi ...
CVE-2022-23824vulnerablevulnerablevulnerablefixedfixedfixedfixedIBPB may not prevent return branch predictions from being specified by ...
CVE-2022-23816vulnerablevulnerableunknownunknownunknownunknownunknown
CVE-2022-23035vulnerablevulnerablevulnerablefixedfixedfixedfixedInsufficient cleanup of passed-through device IRQs The management of I ...
CVE-2022-23034vulnerablevulnerablevulnerablefixedfixedfixedfixedA PV guest could DoS Xen while unmapping a grant To address XSA-380, r ...
CVE-2022-23033vulnerablefixedfixedfixedfixedfixedfixedarm: guest_physmap_remove_page not removing the p2m mappings The funct ...
CVE-2022-21166vulnerablevulnerablevulnerablefixedfixedfixedfixedIncomplete cleanup in specific special register write operations for s ...
CVE-2022-21125vulnerablevulnerablevulnerablefixedfixedfixedfixedIncomplete cleanup of microarchitectural fill buffers on some Intel(R) ...
CVE-2022-21123vulnerablevulnerablevulnerablefixedfixedfixedfixedIncomplete cleanup of multi-core shared buffers for some Intel(R) Proc ...
CVE-2021-28709vulnerablevulnerablevulnerablefixedfixedfixedfixedissues with partially successful P2M updates on x86 T[his CNA informat ...
CVE-2021-28708vulnerablevulnerablevulnerablefixedfixedfixedfixedPoD operations on misaligned GFNs T[his CNA information record relates ...
CVE-2021-28707vulnerablevulnerablevulnerablefixedfixedfixedfixedPoD operations on misaligned GFNs T[his CNA information record relates ...
CVE-2021-28706vulnerablevulnerablevulnerablefixedfixedfixedfixedguests may exceed their designated memory limit When a guest is permit ...
CVE-2021-28705vulnerablevulnerablevulnerablefixedfixedfixedfixedissues with partially successful P2M updates on x86 T[his CNA informat ...
CVE-2021-28704vulnerablevulnerablevulnerablefixedfixedfixedfixedPoD operations on misaligned GFNs T[his CNA information record relates ...
CVE-2021-28703vulnerablevulnerablevulnerablefixedfixedfixedfixedgrant table v2 status pages may remain accessible after de-allocation ...
CVE-2021-28702vulnerablefixedfixedfixedfixedfixedfixedPCI devices with RMRRs not deassigned correctly Certain PCI devices in ...
CVE-2021-28701vulnerablevulnerablevulnerablefixedfixedfixedfixedAnother race in XENMAPSPACE_grant_table handling Guests are permitted ...
CVE-2021-28700vulnerablefixedfixedfixedfixedfixedfixedxen/arm: No memory limit for dom0less domUs The dom0less feature allow ...
CVE-2021-28699vulnerablefixedvulnerablefixedfixedfixedfixedinadequate grant-v2 status frames array bounds check The v2 grant tabl ...
CVE-2021-28698vulnerablevulnerablevulnerablefixedfixedfixedfixedlong running loops in grant table handling In order to properly monito ...
CVE-2021-28697vulnerablevulnerablevulnerablefixedfixedfixedfixedgrant table v2 status pages may remain accessible after de-allocation ...
CVE-2021-28696vulnerablevulnerablevulnerablefixedfixedfixedfixedIOMMU page mapping issues on x86 T[his CNA information record relates ...
CVE-2021-28695vulnerablevulnerablevulnerablefixedfixedfixedfixedIOMMU page mapping issues on x86 T[his CNA information record relates ...
CVE-2021-28694vulnerablevulnerablevulnerablefixedfixedfixedfixedIOMMU page mapping issues on x86 T[his CNA information record relates ...
CVE-2021-28693vulnerablefixedfixedfixedfixedfixedfixedxen/arm: Boot modules are not scrubbed The bootloader will load boot m ...
CVE-2021-28692vulnerablevulnerablefixedfixedfixedfixedfixedinappropriate x86 IOMMU timeout detection / handling IOMMUs process co ...
CVE-2021-28690vulnerablevulnerablefixedfixedfixedfixedfixedx86: TSX Async Abort protections not restored after S3 This issue rela ...
CVE-2021-28687vulnerablefixedfixedfixedfixedfixedfixedHVM soft-reset crashes toolstack libxl requires all data structures pa ...
CVE-2021-27379vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.11.x, allowing x86 Intel HVM ...
CVE-2021-26933vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen 4.9 through 4.14.x. On Arm, a guest is ...
CVE-2021-26313vulnerablevulnerablefixedfixedfixedfixedfixedPotential speculative code store bypass in all supported CPU products, ...
CVE-2021-3308vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen 4.12.3 through 4.12.4 and 4.13.1 throug ...
CVE-2021-0089vulnerablevulnerablefixedfixedfixedfixedfixedObservable response discrepancy in some Intel(R) Processors may allow ...
CVE-2020-29571vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. A bounds check common t ...
CVE-2020-29570vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. Recording of the per-vC ...
CVE-2020-29567vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen 4.14.x. When moving IRQs between CPUs t ...
CVE-2020-29566vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. When they require assis ...
CVE-2020-29486vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. Nodes in xenstore have ...
CVE-2020-29485vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen 4.6 through 4.14.x. When acting upon a ...
CVE-2020-29484vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. When a Xenstore watch f ...
CVE-2020-29483vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. Xenstored and guests co ...
CVE-2020-29482vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. A guest may access xens ...
CVE-2020-29481vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. Access rights of Xensto ...
CVE-2020-29480vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. Neither xenstore implem ...
CVE-2020-29479vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. In the Ocaml xenstored ...
CVE-2020-29040vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x allowing x86 HVM guest O ...
CVE-2020-28368vulnerablevulnerablefixedfixedfixedfixedfixedXen through 4.14.x allows guest OS administrators to obtain sensitive ...
CVE-2020-27674vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x allowing x86 PV guest OS ...
CVE-2020-27672vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x allowing x86 guest OS us ...
CVE-2020-27671vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x allowing x86 HVM and PVH ...
CVE-2020-27670vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x allowing x86 guest OS us ...
CVE-2020-25604vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. There is a race conditi ...
CVE-2020-25603vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. There are missing memor ...
CVE-2020-25602vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. An x86 PV guest can tri ...
CVE-2020-25601vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. There is a lack of pree ...
CVE-2020-25600vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. Out of bounds event cha ...
CVE-2020-25599vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. There are evtchn_reset( ...
CVE-2020-25597vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. There is mishandling of ...
CVE-2020-25596vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. x86 PV guest kernels ca ...
CVE-2020-25595vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.14.x. The PCI passthrough cod ...
CVE-2020-15567vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.13.x, allowing Intel guest OS ...
CVE-2020-15566vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.13.x, allowing guest OS users ...
CVE-2020-15565vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.13.x, allowing x86 Intel HVM ...
CVE-2020-15564vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.13.x, allowing Arm guest OS u ...
CVE-2020-15563vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.13.x, allowing x86 HVM guest ...
CVE-2020-11743vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.13.x, allowing guest OS users ...
CVE-2020-11742vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.13.x, allowing guest OS users ...
CVE-2020-11741vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in xenoprof in Xen through 4.13.x, allowing gu ...
CVE-2020-11740vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in xenoprof in Xen through 4.13.x, allowing gu ...
CVE-2020-11739vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.13.x, allowing guest OS users ...
CVE-2019-19583vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing x86 HVM/PVH gue ...
CVE-2019-19582vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing x86 guest OS us ...
CVE-2019-19581vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing 32-bit Arm gues ...
CVE-2019-19580vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing x86 PV guest OS ...
CVE-2019-19579vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing attackers to ga ...
CVE-2019-19578vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing x86 PV guest OS ...
CVE-2019-19577vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing x86 AMD HVM gue ...
CVE-2019-18425vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing 32-bit PV guest ...
CVE-2019-18424vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing attackers to ga ...
CVE-2019-18423vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing ARM guest OS us ...
CVE-2019-18422vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing ARM guest OS us ...
CVE-2019-18421vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing x86 PV guest OS ...
CVE-2019-18420vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing x86 PV guest OS ...
CVE-2019-17350vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing Arm domU attack ...
CVE-2019-17349vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.12.x allowing Arm domU attack ...
CVE-2019-17347vulnerablefixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.11.x allowing x86 PV guest OS ...
CVE-2019-17340vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.11.x allowing x86 guest OS us ...
CVE-2019-11135vulnerablefixedfixedfixedfixedfixedfixedTSX Asynchronous Abort condition on some CPUs utilizing speculative ex ...
CVE-2019-11091vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedMicroarchitectural Data Sampling Uncacheable Memory (MDSUM): Uncacheab ...
CVE-2018-19965vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedAn issue was discovered in Xen through 4.11.x allowing 64-bit PV guest ...
CVE-2018-12207vulnerablefixedfixedfixedfixedfixedfixedImproper invalidation for page table updates by a virtual guest operat ...
CVE-2018-12130vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedMicroarchitectural Fill Buffer Data Sampling (MFBDS): Fill buffers on ...
CVE-2018-12127vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedMicroarchitectural Load Port Data Sampling (MLPDS): Load ports on some ...
CVE-2018-12126vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedMicroarchitectural Store Buffer Data Sampling (MSBDS): Store buffers o ...
CVE-2018-3665vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedSystem software utilizing Lazy FP state restore technique on systems u ...
CVE-2018-3646vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedSystems with microprocessors utilizing speculative execution and addre ...
CVE-2018-3639vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedSystems with microprocessors utilizing speculative execution and specu ...
CVE-2018-3620vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedSystems with microprocessors utilizing speculative execution and addre ...
CVE-2017-10919vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedXen through 4.8.x mishandles virtual interrupt injection, which allows ...
CVE-2017-5754vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedSystems with microprocessors utilizing speculative execution and indir ...
CVE-2017-5715vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedSystems with microprocessors utilizing speculative execution and indir ...
CVE-2016-9818vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedXen through 4.7.x allows local ARM guest OS users to cause a denial of ...
CVE-2016-9817vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedXen through 4.7.x allows local ARM guest OS users to cause a denial of ...
CVE-2016-9816vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedXen through 4.7.x allows local ARM guest OS users to cause a denial of ...
CVE-2016-9815vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedXen through 4.7.x allows local ARM guest OS users to cause a denial of ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2021-28689vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerablex86: Speculative vulnerabilities with bare (non-shim) 32-bit PV guests ...
CVE-2014-9066vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableXen 4.4.x and earlier, when using a large number of VCPUs, does not pr ...

Resolved issues

BugDescription
TEMP-0860565-9E8C4BXSA-206: xenstore denial of service via repeated update
TEMP-0000000-CE3B44XSA-166: ioreq handling possibly susceptible to multiple read issue
CVE-2021-28710certain VT-d IOMMUs may not work in shared page table mode For efficie ...
CVE-2020-25598An issue was discovered in Xen 4.14.x. There is a missing unlock in th ...
CVE-2019-17348An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS ...
CVE-2019-17346An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS ...
CVE-2019-17345An issue was discovered in Xen 4.8.x through 4.11.x allowing x86 PV gu ...
CVE-2019-17344An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS ...
CVE-2019-17343An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS ...
CVE-2019-17342An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS ...
CVE-2019-17341An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS ...
CVE-2018-19967An issue was discovered in Xen through 4.11.x on Intel x86 platforms a ...
CVE-2018-19966An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS ...
CVE-2018-19964An issue was discovered in Xen 4.11.x allowing x86 guest OS users to c ...
CVE-2018-19963An issue was discovered in Xen 4.11 allowing HVM guest OS users to cau ...
CVE-2018-19962An issue was discovered in Xen through 4.11.x on AMD x86 platforms, po ...
CVE-2018-19961An issue was discovered in Xen through 4.11.x on AMD x86 platforms, po ...
CVE-2018-18883An issue was discovered in Xen 4.9.x through 4.11.x, on Intel x86 plat ...
CVE-2018-15470An issue was discovered in Xen through 4.11.x. The logic in oxenstored ...
CVE-2018-15469An issue was discovered in Xen through 4.11.x. ARM never properly impl ...
CVE-2018-15468An issue was discovered in Xen through 4.11.x. The DEBUGCTL MSR contai ...
CVE-2018-12893An issue was discovered in Xen through 4.10.x. One of the fixes in XSA ...
CVE-2018-12892An issue was discovered in Xen 4.7 through 4.10.x. libxl fails to pass ...
CVE-2018-12891An issue was discovered in Xen through 4.10.x. Certain PV MMU operatio ...
CVE-2018-10982An issue was discovered in Xen through 4.10.x allowing x86 HVM guest O ...
CVE-2018-10981An issue was discovered in Xen through 4.10.x allowing x86 HVM guest O ...
CVE-2018-10472An issue was discovered in Xen through 4.10.x allowing x86 HVM guest O ...
CVE-2018-10471An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS ...
CVE-2018-8897A statement in the System Programming Guide of the Intel 64 and IA-32 ...
CVE-2018-7542An issue was discovered in Xen 4.8.x through 4.10.x allowing x86 PVH g ...
CVE-2018-7541An issue was discovered in Xen through 4.10.x allowing guest OS users ...
CVE-2018-7540An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS ...
CVE-2018-5244In Xen 4.10, new infrastructure was introduced as part of an overhaul ...
CVE-2017-17566An issue was discovered in Xen through 4.9.x allowing PV guest OS user ...
CVE-2017-17565An issue was discovered in Xen through 4.9.x allowing PV guest OS user ...
CVE-2017-17564An issue was discovered in Xen through 4.9.x allowing guest OS users t ...
CVE-2017-17563An issue was discovered in Xen through 4.9.x allowing guest OS users t ...
CVE-2017-17046An issue was discovered in Xen through 4.9.x on the ARM platform allow ...
CVE-2017-17045An issue was discovered in Xen through 4.9.x allowing HVM guest OS use ...
CVE-2017-17044An issue was discovered in Xen through 4.9.x allowing HVM guest OS use ...
CVE-2017-15597An issue was discovered in Xen through 4.9.x. Grant copying code made ...
CVE-2017-15596An issue was discovered in Xen 4.4.x through 4.9.x allowing ARM guest ...
CVE-2017-15595An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS ...
CVE-2017-15594An issue was discovered in Xen through 4.9.x allowing x86 SVM PV guest ...
CVE-2017-15593An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS ...
CVE-2017-15592An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS ...
CVE-2017-15591An issue was discovered in Xen 4.5.x through 4.9.x allowing attackers ...
CVE-2017-15590An issue was discovered in Xen through 4.9.x allowing x86 guest OS use ...
CVE-2017-15589An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS ...
CVE-2017-15588An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS ...
CVE-2017-14431Memory leak in Xen 3.3 through 4.8.x allows guest OS users to cause a ...
CVE-2017-14319A grant unmapping issue was discovered in Xen through 4.9.x. When remo ...
CVE-2017-14318An issue was discovered in Xen 4.5.x through 4.9.x. The function `__gn ...
CVE-2017-14317A domain cleanup issue was discovered in the C xenstore daemon (aka cx ...
CVE-2017-14316A parameter verification issue was discovered in Xen through 4.9.x. Th ...
CVE-2017-12855Xen maintains the _GTF_{read,writ}ing bits as appropriate, to inform t ...
CVE-2017-12137arch/x86/mm.c in Xen allows local PV guest OS users to gain host OS pr ...
CVE-2017-12136Race condition in the grant table code in Xen 4.6.x through 4.9.x allo ...
CVE-2017-12135Xen allows local OS guest users to cause a denial of service (crash) o ...
CVE-2017-10923Xen through 4.8.x does not validate a vCPU array index upon the sendin ...
CVE-2017-10922The grant-table feature in Xen through 4.8.x mishandles MMIO region gr ...
CVE-2017-10921The grant-table feature in Xen through 4.8.x does not ensure sufficien ...
CVE-2017-10920The grant-table feature in Xen through 4.8.x mishandles a GNTMAP_devic ...
CVE-2017-10918Xen through 4.8.x does not validate memory allocations during certain ...
CVE-2017-10917Xen through 4.8.x does not validate the port numbers of polled event c ...
CVE-2017-10916The vCPU context-switch implementation in Xen through 4.8.x improperly ...
CVE-2017-10915The shadow-paging feature in Xen through 4.8.x mismanages page referen ...
CVE-2017-10914The grant-table feature in Xen through 4.8.x has a race condition lead ...
CVE-2017-10913The grant-table feature in Xen through 4.8.x provides false mapping in ...
CVE-2017-10912Xen through 4.8.x mishandles page transfer, which allows guest OS user ...
CVE-2017-8905Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, ...
CVE-2017-8904Xen through 4.8.x mishandles the "contains segment descriptors" proper ...
CVE-2017-8903Xen through 4.8.x on 64-bit platforms mishandles page tables after an ...
CVE-2017-7995Xen PV guest before Xen 4.3 checked access permissions to MMIO ranges ...
CVE-2017-7228An issue (known as XSA-212) was discovered in Xen, with fixes availabl ...
CVE-2017-2620Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA E ...
CVE-2016-10025VMFUNC emulation in Xen 4.6.x through 4.8.x on x86 systems using AMD v ...
CVE-2016-10024Xen through 4.8.x allows local x86 PV guest OS kernel administrators t ...
CVE-2016-10013Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to gain p ...
CVE-2016-9932CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows l ...
CVE-2016-9637The (1) ioport_read and (2) ioport_write functions in Xen, when qemu i ...
CVE-2016-9603A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA e ...
CVE-2016-9386The x86 emulator in Xen does not properly treat x86 NULL segments as u ...
CVE-2016-9385The x86 segment base write emulation functionality in Xen 4.4.x throug ...
CVE-2016-9384Xen 4.7 allows local guest OS users to obtain sensitive host informati ...
CVE-2016-9383Xen, when running on a 64-bit hypervisor, allows local x86 guest OS us ...
CVE-2016-9382Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, whic ...
CVE-2016-9381Race condition in QEMU in Xen allows local x86 HVM guest OS administra ...
CVE-2016-9380The pygrub boot loader emulator in Xen, when nul-delimited output form ...
CVE-2016-9379The pygrub boot loader emulator in Xen, when S-expression output forma ...
CVE-2016-9378Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when ...
CVE-2016-9377Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when ...
CVE-2016-7777Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which ...
CVE-2016-7154Use-after-free vulnerability in the FIFO event channel code in Xen 4.4 ...
CVE-2016-7094Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS ...
CVE-2016-7093Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to ...
CVE-2016-7092The get_page_from_l3e function in arch/x86/mm.c in Xen allows local 32 ...
CVE-2016-6259Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Preven ...
CVE-2016-6258The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows ...
CVE-2016-5242The p2m_teardown function in arch/arm/p2m.c in Xen 4.4.x through 4.6.x ...
CVE-2016-4963The libxl device-handling in Xen through 4.6.x allows local guest OS u ...
CVE-2016-4962The libxl device-handling in Xen 4.6.x and earlier allows local OS gue ...
CVE-2016-4480The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6. ...
CVE-2016-3960Integer overflow in the x86 shadow pagetable code in Xen allows local ...
CVE-2016-3712Integer overflow in the VGA module in QEMU allows local guest OS users ...
CVE-2016-3710The VGA module in QEMU improperly performs bounds checking on banked a ...
CVE-2016-3159The fpu_fxrstor function in arch/x86/i387.c in Xen 4.x does not proper ...
CVE-2016-3158The xrstor function in arch/x86/xstate.c in Xen 4.x does not properly ...
CVE-2016-2271VMX in Xen 4.6.x and earlier, when using an Intel or Cyrix CPU, allows ...
CVE-2016-2270Xen 4.6.x and earlier allows local guest administrators to cause a den ...
CVE-2016-1571The paging_invlpg function in include/asm-x86/paging.h in Xen 3.3.x th ...
CVE-2016-1570The PV superpage functionality in arch/x86/mm.c in Xen 3.4.0, 3.4.1, a ...
CVE-2015-8615The hvm_set_callback_via function in arch/x86/hvm/irq.c in Xen 4.6 doe ...
CVE-2015-8555Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU ...
CVE-2015-8554Buffer overflow in hw/pt-msi.c in Xen 4.6.x and earlier, when using th ...
CVE-2015-8550Xen, when used on a system providing PV backends, allows local guest O ...
CVE-2015-8341The libxl toolstack library in Xen 4.1.x through 4.6.x does not proper ...
CVE-2015-8340The memory_exchange function in common/memory.c in Xen 3.2.x through 4 ...
CVE-2015-8339The memory_exchange function in common/memory.c in Xen 3.2.x through 4 ...
CVE-2015-8338Xen 4.6.x and earlier does not properly enforce limits on page order i ...
CVE-2015-8104The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x thr ...
CVE-2015-7972The (1) libxl_set_memory_target function in tools/libxl/libxl.c and (2 ...
CVE-2015-7971Xen 3.2.x through 4.6.x does not limit the number of printk console me ...
CVE-2015-7970The p2m_pod_emergency_sweep function in arch/x86/mm/p2m-pod.c in Xen 3 ...
CVE-2015-7969Multiple memory leaks in Xen 4.0 through 4.6.x allow local guest admin ...
CVE-2015-7835The mod_l2_entry function in arch/x86/mm.c in Xen 3.4 through 4.6.x do ...
CVE-2015-7814Race condition in the relinquish_memory function in arch/arm/domain.c ...
CVE-2015-7813Xen 4.4.x, 4.5.x, and 4.6.x does not limit the number of printk consol ...
CVE-2015-7812The hypercall_create_continuation function in arch/arm/domain.c in Xen ...
CVE-2015-7311libxl in Xen 4.1.x through 4.6.x does not properly handle the readonly ...
CVE-2015-6654The xenmem_add_to_physmap_one function in arch/arm/mm.c in Xen 4.5.x, ...
CVE-2015-5307The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x thr ...
CVE-2015-5166Use-after-free vulnerability in QEMU in Xen 4.5.x and earlier does not ...
CVE-2015-5165The C+ mode offload emulation in the RTL8139 network card device model ...
CVE-2015-5154Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xe ...
CVE-2015-4164The compat_iret function in Xen 3.1 through 4.5 iterates the wrong way ...
CVE-2015-4163GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the gran ...
CVE-2015-4106QEMU does not properly restrict write access to the PCI config space f ...
CVE-2015-4105Xen 3.3.x through 4.5.x enables logging for PCI MSI-X pass-through err ...
CVE-2015-4104Xen 3.3.x through 4.5.x does not properly restrict access to PCI MSI m ...
CVE-2015-4103Xen 3.3.x through 4.5.x does not properly restrict write access to the ...
CVE-2015-3456The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and ear ...
CVE-2015-3340Xen 4.2.x through 4.5.x does not initialize certain fields, which allo ...
CVE-2015-3259Stack-based buffer overflow in the xl command line utility in Xen 4.1. ...
CVE-2015-3214The pit_ioport_read in i8254.c in the Linux kernel before 2.6.33 and Q ...
CVE-2015-3209Heap-based buffer overflow in the PCNET controller in QEMU allows remo ...
CVE-2015-2756QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict a ...
CVE-2015-2752The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, wh ...
CVE-2015-2751Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, allo ...
CVE-2015-2152Xen 4.5.x and earlier enables certain default backends when emulating ...
CVE-2015-2151The x86 emulator in Xen 3.2.x through 4.5.x does not properly ignore s ...
CVE-2015-2045The HYPERVISOR_xen_version hypercall in Xen 3.2.x through 4.5.x does n ...
CVE-2015-2044The emulation routines for unspecified X86 devices in Xen 3.2.x throug ...
CVE-2015-1563The ARM GIC distributor virtualization in Xen 4.4.x and 4.5.x allows l ...
CVE-2015-0361Use-after-free vulnerability in Xen 4.2.x, 4.3.x, and 4.4.x allows rem ...
CVE-2015-0268The vgic_v2_to_sgi function in arch/arm/vgic-v2.c in Xen 4.5.x, when r ...
CVE-2014-9065common/spinlock.c in Xen 4.4.x and earlier does not properly handle re ...
CVE-2014-9030The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x ...
CVE-2014-8867The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, ...
CVE-2014-8866The compatibility mode hypercall argument translation in Xen 3.3.x thr ...
CVE-2014-8595arch/x86/x86_emulate/x86_emulate.c in Xen 3.2.1 through 4.4.x does not ...
CVE-2014-8594The do_mmu_update function in arch/x86/mm.c in Xen 4.x through 4.4.x d ...
CVE-2014-7188The hvm_msr_read_intercept function in arch/x86/hvm/hvm.c in Xen 4.1 t ...
CVE-2014-7156The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen ...
CVE-2014-7155The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen ...
CVE-2014-7154Race condition in HVMOP_track_dirty_vram in Xen 4.0.0 through 4.4.x do ...
CVE-2014-6268The evtchn_fifo_set_pending function in Xen 4.4.x allows local guest u ...
CVE-2014-5149Certain MMU virtualization operations in Xen 4.2.x through 4.4.x, when ...
CVE-2014-5148Xen 4.4.x, when running on an ARM system and "handling an unknown syst ...
CVE-2014-5147Xen 4.4.x, when running a 64-bit kernel on an ARM system, does not pro ...
CVE-2014-5146Certain MMU virtualization operations in Xen 4.2.x through 4.4.x befor ...
CVE-2014-4883resolv.c in the DNS resolver in uIP, and dns.c in the DNS resolver in ...
CVE-2014-4022The alloc_domain_struct function in arch/arm/domain.c in Xen 4.4.x, wh ...
CVE-2014-4021Xen 3.2.x through 4.4.x does not properly clean memory pages recovered ...
CVE-2014-3969Xen 4.4.x, when running on an ARM system, does not properly check writ ...
CVE-2014-3968The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x allows lo ...
CVE-2014-3967The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x does not ...
CVE-2014-3717Xen 4.4.x does not properly validate the load address for 64-bit ARM g ...
CVE-2014-3716Xen 4.4.x does not properly check alignment, which allows local users ...
CVE-2014-3715Buffer overflow in Xen 4.4.x allows local users to read system memory ...
CVE-2014-3714The ARM image loading functionality in Xen 4.4.x does not properly val ...
CVE-2014-3672The qemu implementation in libvirt before 1.3.0 and Xen allows local g ...
CVE-2014-3125Xen 4.4.x, when running on an ARM system, does not properly context sw ...
CVE-2014-3124The HVMOP_set_mem_type control in Xen 4.1 through 4.4.x allows local g ...
CVE-2014-2986The vgic_distr_mmio_write function in the virtual guest interrupt cont ...
CVE-2014-2915Xen 4.4.x, when running on ARM systems, does not properly restrict acc ...
CVE-2014-2599The HVMOP_set_mem_access HVM control operations in Xen 4.1.x for 32-bi ...
CVE-2014-1950Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen ...
CVE-2014-1896The (1) do_send and (2) do_recv functions in io.c in libvchan in Xen 4 ...
CVE-2014-1895Off-by-one error in the flask_security_avc_cachestats function in xsm/ ...
CVE-2014-1894Multiple integer overflows in unspecified suboperations in the flask h ...
CVE-2014-1893Multiple integer overflows in the (1) FLASK_GETBOOL and (2) FLASK_SETB ...
CVE-2014-1892Xen 3.3 through 4.1, when XSM is enabled, allows local users to cause ...
CVE-2014-1891Multiple integer overflows in the (1) FLASK_GETBOOL, (2) FLASK_SETBOOL ...
CVE-2014-1666The do_physdev_op function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, ...
CVE-2014-1642The IRQ setup in Xen 4.2.x and 4.3.x, when using device passthrough an ...
CVE-2013-6400Xen 4.2.x and 4.3.x, when using Intel VT-d and a PCI device has been a ...
CVE-2013-6375Xen 4.2.x and 4.3.x, when using Intel VT-d for PCI passthrough, does n ...
CVE-2013-4554Xen 3.0.3 through 4.1.x (possibly 4.1.6.1), 4.2.x (possibly 4.2.3), an ...
CVE-2013-4553The XEN_DOMCTL_getmemlist hypercall in Xen 3.4.x through 4.3.x (possib ...
CVE-2013-4551Xen 4.2.x and 4.3.x, when nested virtualization is disabled, does not ...
CVE-2013-4494Xen before 4.1.x, 4.2.x, and 4.3.x does not take the page_alloc_lock a ...
CVE-2013-4416The Ocaml xenstored implementation (oxenstored) in Xen 4.1.x, 4.2.x, a ...
CVE-2013-4375The qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before 4. ...
CVE-2013-4371Use-after-free vulnerability in the libxl_list_cpupool function in the ...
CVE-2013-4370The ocaml binding for the xc_vcpu_getaffinity function in Xen 4.2.x an ...
CVE-2013-4369The xlu_vif_parse_rate function in the libxlu library in Xen 4.2.x and ...
CVE-2013-4368The outs instruction emulation in Xen 3.1.x, 4.2.x, 4.3.x, and earlier ...
CVE-2013-4361The fbld instruction emulation in Xen 3.3.x through 4.3.x does not use ...
CVE-2013-4356Xen 4.3.x writes hypervisor mappings to certain shadow pagetables when ...
CVE-2013-4355Xen 4.3.x and earlier does not properly handle certain errors, which a ...
CVE-2013-4344Buffer overflow in the SCSI implementation in QEMU, as used in Xen, wh ...
CVE-2013-4329The xenlight library (libxl) in Xen 4.0.x through 4.2.x, when IOMMU is ...
CVE-2013-3495The Intel VT-d Interrupt Remapping engine in Xen 3.3.x through 4.3.x a ...
CVE-2013-2212The vmx_set_uc_mode function in Xen 3.3 through 4.3, when disabling ca ...
CVE-2013-2211The libxenlight (libxl) toolstack library in Xen 4.0.x, 4.1.x, and 4.2 ...
CVE-2013-2196Multiple unspecified vulnerabilities in the Elf parser (libelf) in Xen ...
CVE-2013-2195The Elf parser (libelf) in Xen 4.2.x and earlier allow local guest adm ...
CVE-2013-2194Multiple integer overflows in the Elf parser (libelf) in Xen 4.2.x and ...
CVE-2013-2078Xen 4.0.2 through 4.0.4, 4.1.x, and 4.2.x allows local PV guest users ...
CVE-2013-2077Xen 4.0.x, 4.1.x, and 4.2.x does not properly restrict the contents of ...
CVE-2013-2076Xen 4.0.x, 4.1.x, and 4.2.x, when running on AMD64 processors, only sa ...
CVE-2013-2072Buffer overflow in the Python bindings for the xc_vcpu_setaffinity cal ...
CVE-2013-1964Xen 4.0.x and 4.1.x incorrectly releases a grant reference when releas ...
CVE-2013-1952Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, ...
CVE-2013-1922qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw ...
CVE-2013-1920Xen 4.2.x, 4.1.x, and earlier, when the hypervisor is running "under m ...
CVE-2013-1919Xen 4.2.x and 4.1.x does not properly restrict access to IRQs, which a ...
CVE-2013-1918Certain page table manipulation operations in Xen 4.1.x, 4.2.x, and ea ...
CVE-2013-1917Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not ...
CVE-2013-1442Xen 4.0 through 4.3.x, when using AVX or LWP capable CPUs, does not pr ...
CVE-2013-1432Xen 4.1.x and 4.2.x, when the XSA-45 patch is in place, does not prope ...
CVE-2013-0215oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly ...
CVE-2013-0154The get_page_type function in xen/arch/x86/mm.c in Xen 4.2, when debug ...
CVE-2013-0153The AMD IOMMU support in Xen 4.2.x, 4.1.x, 3.3, and other versions, wh ...
CVE-2013-0152Memory leak in Xen 4.2 and unstable allows local HVM guests to cause a ...
CVE-2013-0151The do_hvm_op function in xen/arch/x86/hvm/hvm.c in Xen 4.2.x on the x ...
CVE-2012-6333Multiple HVM control operations in Xen 3.4 through 4.2 allow local HVM ...
CVE-2012-6075Buffer overflow in the e1000_receive function in the e1000 device driv ...
CVE-2012-6036The (1) memc_save_get_next_page, (2) tmemc_restore_put_page and (3) tm ...
CVE-2012-6035The do_tmem_destroy_pool function in the Transcendent Memory (TMEM) in ...
CVE-2012-6034The (1) tmemc_save_get_next_page and (2) tmemc_save_get_next_inv funct ...
CVE-2012-6033The do_tmem_control function in the Transcendent Memory (TMEM) in Xen ...
CVE-2012-6032Multiple integer overflows in the (1) tmh_copy_from_client and (2) tmh ...
CVE-2012-6031The do_tmem_get function in the Transcendent Memory (TMEM) in Xen 4.0, ...
CVE-2012-6030The do_tmem_op function in the Transcendent Memory (TMEM) in Xen 4.0, ...
CVE-2012-5634Xen 4.2.x, 4.1.x, and 4.0, when using Intel VT-d for PCI passthrough, ...
CVE-2012-5525The get_page_from_gfn hypercall function in Xen 4.2 allows local PV gu ...
CVE-2012-5515The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and ...
CVE-2012-5514The guest_physmap_mark_populate_on_demand function in Xen 4.2 and earl ...
CVE-2012-5513The XENMEM_exchange handler in Xen 4.2 and earlier does not properly c ...
CVE-2012-5512Array index error in the HVMOP_set_mem_access handler in Xen 4.1 allow ...
CVE-2012-5511Stack-based buffer overflow in the dirty video RAM tracking functional ...
CVE-2012-5510Xen 4.x, when downgrading the grant table version, does not properly r ...
CVE-2012-4544The PV domain builder in Xen 4.2 and earlier does not validate the siz ...
CVE-2012-4539Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hyper ...
CVE-2012-4538The HVMOP_pagetable_dying hypercall in Xen 4.0, 4.1, and 4.2 does not ...
CVE-2012-4537Xen 3.4 through 4.2, and possibly earlier versions, does not properly ...
CVE-2012-4536The (1) domain_pirq_to_emuirq and (2) physdev_unmap_pirq functions in ...
CVE-2012-4535Xen 3.4 through 4.2, and possibly earlier versions, allows local guest ...
CVE-2012-4411The graphical console in Xen 4.0, 4.1 and 4.2 allows local OS guest ad ...
CVE-2012-3516The GNTTABOP_swap_grant_ref sub-operation in the grant table hypercall ...
CVE-2012-3515Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulat ...
CVE-2012-3498PHYSDEVOP_map_pirq in Xen 4.1 and 4.2 and Citrix XenServer 6.0.2 and e ...
CVE-2012-3497(1) TMEMC_SAVE_GET_CLIENT_WEIGHT, (2) TMEMC_SAVE_GET_CLIENT_CAP, (3) T ...
CVE-2012-3496XENMEM_populate_physmap in Xen 4.0, 4.1, and 4.2, and Citrix XenServer ...
CVE-2012-3495The physdev_get_free_pirq hypercall in arch/x86/physdev.c in Xen 4.1.x ...
CVE-2012-3494The set_debugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4 ...
CVE-2012-3433Xen 4.0 and 4.1 allows local HVM guest OS kernels to cause a denial of ...
CVE-2012-3432The handle_mmio function in arch/x86/hvm/io.c in the MMIO operations e ...
CVE-2012-2934Xen 4.0, and 4.1, when running a 64-bit PV guest on "older" AMD CPUs, ...
CVE-2012-2625The PyGrub boot loader in Xen unstable before changeset 25589:60f09d1a ...
CVE-2012-0218Xen 3.4, 4.0, and 4.1, when the guest OS has not registered a handler ...
CVE-2012-0217The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, ...
CVE-2012-0029Heap-based buffer overflow in the process_tx_desc function in the e100 ...
CVE-2011-4111Buffer overflow in the ccid_card_vscard_handle_message function in hw/ ...
CVE-2011-3262tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allow ...
CVE-2011-3131Xen 4.1.1 and earlier allows local guest OS kernels with control of a ...
CVE-2011-2901Off-by-one error in the __addr_ok macro in Xen 3.3 and earlier allows ...
CVE-2011-2519Xen in the Linux kernel, when running a guest on a host without hardwa ...
CVE-2011-1898Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough ...
CVE-2011-1583Multiple integer overflows in tools/libxc/xc_dom_bzimageloader.c in Xe ...
CVE-2011-1166Xen, possibly before 4.0.2, allows local 64-bit PV guests to cause a d ...
CVE-2010-4255The fixup_page_fault function in arch/x86/traps.c in Xen 4.0.1 and ear ...
CVE-2010-2938arch/x86/hvm/vmx/vmcs.c in the virtual-machine control structure (VMCS ...

Security announcements

DSA / DLADescription
DSA-5378-1xen - security update
DSA-5272-1xen - security update
DSA-5184-1xen - security update
DSA-5117-1xen - security update
DSA-5017-1xen - security update
DSA-4977-1xen - security update
DSA-4931-1xen - security update
DSA-4888-1xen - security update
DSA-4812-1xen - security update
DSA-4804-1xen - security update
DSA-4769-1xen - security update
DSA-4723-1xen - security update
DSA-4602-1xen - security update
DLA-1949-1xen - security update
DSA-4369-1xen - security update
DLA-1577-1xen - security update
DLA-1559-1xen - security update
DLA-1549-1xen - security update
DLA-1493-1xen - security update
DSA-4274-1xen - security update
DSA-4236-1xen - security update
DSA-4232-1xen - security update
DSA-4210-1xen - security update
DLA-1383-1xen - security update
DSA-4201-1xen - security update
DLA-1300-1xen - security update
DSA-4131-1xen - security update
DSA-4112-1xen - security update
DLA-1270-1xen - security update
DLA-1230-1xen - security update
DSA-4050-1xen - security update
DLA-1181-1xen - security update
DLA-1132-1xen - security update
DSA-3969-1xen - security update
DLA-964-1xen - security update
DSA-3847-1xen - security update
DLA-907-1xen - security update
DLA-783-1xen - security update
DSA-3729-1xen - security update
DLA-720-1xen - security update
DLA-699-1xen - security update
DSA-3663-1xen - security update
DLA-614-1xen - security update
DLA-571-1xen - security update
DSA-3633-1xen - security update
DLA-479-1xen - security update
DSA-3554-1xen - security update
DSA-3519-1xen - security update
DSA-3414-1xen - security update
DSA-3390-1xen - security update
DSA-3286-1xen - security update
DSA-3262-1xen - security update
DSA-3181-1xen - security update
DSA-3140-1xen - security update
DSA-3041-1xen - security update
DSA-3006-1xen - security update
DSA-2666-1xen - several
DSA-2662-1xen - several
DSA-2636-1xen - several
DSA-2582-1xen - denial of service
DSA-2544-1xen - denial of service
DSA-2531-1xen - several
DSA-2501-1xen - several
DSA-2337-1xen - several vulnerabilities

Search for package or bug name: Reporting problems