- Home
- CVEs with nessus.description==xen was updated to fix 10 security issues :
- Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling (CVE-2014-9030).
- Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor (CVE-2014-8867).
- Missing privilege level checks in x86 emulation of far branches (CVE-2014-8595).
- Missing privilege level checks in x86 HLT, LGDT, LIDT, and LMSW emulation (CVE-2014-7155).
- Hypervisor heap contents leaked to guests (CVE-2014-4021).
- Missing privilege level checks in x86 emulation of far branches (CVE-2014-8595).
- Insufficient restrictions on certain MMU update hypercalls (CVE-2014-8594).
- Intel VT-d Interrupt Remapping engines can be evaded by native NMI interrupts (CVE-2013-3495).
- Missing privilege level checks in x86 emulation of software interrupts (CVE-2014-7156).
- Race condition in HVMOP_track_dirty_vram (CVE-2014-7154).
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top