- Home
- CVEs with nessus.description==This update for xen fixes the following security issues :
- CVE-2018-3646: Systems with microprocessors utilizing
speculative execution and address translations may have
allowed unauthorized disclosure of information residing
in the L1 data cache to an attacker with local user
access with guest OS privilege via a terminal page fault
and a side-channel analysis (bsc#1091107, bsc#1027519).
- Incorrect MSR_DEBUGCTL handling let guests enable BTS
allowing a malicious or buggy guest administrator can
lock up the entire host (bsc#1103276)
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top