Information on source package xen

Available versions

ReleaseVersion
wheezy4.1.4-3+deb7u9
wheezy (security)4.1.6.lts1-9
jessie4.4.1-9+deb8u9
jessie (security)4.4.1-9+deb8u10
stretch (security)4.8.1-1+deb9u3
buster4.8.1-1+deb9u3
sid4.8.1-1+deb9u3

Open issues

BugwheezyjessiestretchbustersidDescription
TEMP-0860565-9E8C4Bvulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedXSA-206: xenstore denial of service via repeated update
CVE-2017-2620vulnerablefixedfixedfixedfixeddisplay: cirrus: out-of-bounds access issue while in cirrus_bitblt_cputovideo
CVE-2017-15595vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in Xen through 4.9.x allowing x86 PV guest OS ...
CVE-2017-15594vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in Xen through 4.9.x allowing x86 SVM PV guest ...
CVE-2017-15593vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in Xen through 4.9.x allowing x86 PV guest OS ...
CVE-2017-15592vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS ...
CVE-2017-15591fixedfixedvulnerablevulnerablevulnerableAn issue was discovered in Xen 4.5.x through 4.9.x allowing attackers ...
CVE-2017-15590vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in Xen through 4.9.x allowing x86 guest OS ...
CVE-2017-15589vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS ...
CVE-2017-15588vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in Xen through 4.9.x allowing x86 PV guest OS ...
CVE-2017-14431vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedMemory leak in Xen 3.3 through 4.8.x allows guest OS users to cause a ...
CVE-2017-14319fixedvulnerablevulnerablevulnerablevulnerableA grant unmapping issue was discovered in Xen through 4.9.x. When ...
CVE-2017-14318fixedfixedvulnerablevulnerablevulnerableAn issue was discovered in Xen 4.5.x through 4.9.x. The function ...
CVE-2017-14317fixedvulnerablevulnerablevulnerablevulnerableA domain cleanup issue was discovered in the C xenstore daemon (aka ...
CVE-2017-14316fixedvulnerablevulnerablevulnerablevulnerableA parameter verification issue was discovered in Xen through 4.9.x. The ...
CVE-2017-10919fixedvulnerable (no DSA, ignored)fixedfixedfixedXen through 4.8.x mishandles virtual interrupt injection, which allows ...
CVE-2016-9818fixedvulnerable (no DSA, ignored)fixedfixedfixedXen through 4.7.x allows local ARM guest OS users to cause a denial of ...
CVE-2016-9817fixedvulnerable (no DSA, ignored)fixedfixedfixedXen through 4.7.x allows local ARM guest OS users to cause a denial of ...
CVE-2016-9816fixedvulnerable (no DSA, ignored)fixedfixedfixedXen through 4.7.x allows local ARM guest OS users to cause a denial of ...
CVE-2016-9815fixedvulnerable (no DSA, ignored)fixedfixedfixedXen through 4.7.x allows local ARM guest OS users to cause a denial of ...
CVE-2016-9637vulnerablefixedfixedfixedfixedThe (1) ioport_read and (2) ioport_write functions in Xen, when qemu ...
CVE-2016-9603vulnerablefixedfixedfixedfixedcirrus: heap buffer overflow via vnc connection
CVE-2016-4963vulnerable (no DSA)vulnerable (no DSA, ignored)fixedfixedfixedThe libxl device-handling in Xen through 4.6.x allows local guest OS ...
CVE-2016-4962vulnerable (no DSA)fixedfixedfixedfixedThe libxl device-handling in Xen 4.6.x and earlier allows local OS ...
CVE-2015-8341vulnerable (no DSA)fixedfixedfixedfixedThe libxl toolstack library in Xen 4.1.x through 4.6.x does not ...
CVE-2015-7311vulnerable (no DSA)fixedfixedfixedfixedlibxl in Xen 4.1.x through 4.6.x does not properly handle the readonly ...
CVE-2015-3259vulnerable (no DSA)fixedfixedfixedfixedStack-based buffer overflow in the xl command line utility in Xen ...
CVE-2015-2152vulnerable (no DSA)fixedfixedfixedfixedXen 4.5.x and earlier enables certain default backends when emulating ...
CVE-2014-5149vulnerable (no DSA)fixedfixedfixedfixedCertain MMU virtualization operations in Xen 4.2.x through 4.4.x, when ...
CVE-2014-5146vulnerable (no DSA)fixedfixedfixedfixedCertain MMU virtualization operations in Xen 4.2.x through 4.4.x ...

Open unimportant issues

BugwheezyjessiestretchbustersidDescription
CVE-2014-9066vulnerablevulnerablevulnerablevulnerablevulnerableXen 4.4.x and earlier, when using a large number of VCPUs, does not ...
CVE-2013-3495vulnerablefixedfixedfixedfixedThe Intel VT-d Interrupt Remapping engine in Xen 3.3.x through 4.3.x ...
CVE-2013-2212vulnerablefixedfixedfixedfixedThe vmx_set_uc_mode function in Xen 3.3 through 4.3, when disabling ...

Resolved issues

BugDescription
TEMP-0000000-CE3B44XSA-166: ioreq handling possibly susceptible to multiple read issue
CVE-2017-8905Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, ...
CVE-2017-8904Xen through 4.8.x mishandles the "contains segment descriptors" ...
CVE-2017-8903Xen through 4.8.x on 64-bit platforms mishandles page tables after an ...
CVE-2017-7995Xen PV guest before Xen 4.3 checked access permissions to MMIO ranges ...
CVE-2017-7228An issue (known as XSA-212) was discovered in Xen, with fixes available ...
CVE-2017-15596An issue was discovered in Xen 4.4.x through 4.9.x allowing ARM guest ...
CVE-2017-12855Xen maintains the _GTF_{read,writ}ing bits as appropriate, to inform ...
CVE-2017-12137arch/x86/mm.c in Xen allows local PV guest OS users to gain host OS ...
CVE-2017-12136Race condition in the grant table code in Xen 4.6.x through 4.9.x ...
CVE-2017-12135Xen allows local OS guest users to cause a denial of service (crash) ...
CVE-2017-10923Xen through 4.8.x does not validate a vCPU array index upon the sending ...
CVE-2017-10922The grant-table feature in Xen through 4.8.x mishandles MMIO region ...
CVE-2017-10921The grant-table feature in Xen through 4.8.x does not ensure sufficient ...
CVE-2017-10920The grant-table feature in Xen through 4.8.x mishandles a ...
CVE-2017-10918Xen through 4.8.x does not validate memory allocations during certain ...
CVE-2017-10917Xen through 4.8.x does not validate the port numbers of polled event ...
CVE-2017-10916The vCPU context-switch implementation in Xen through 4.8.x improperly ...
CVE-2017-10915The shadow-paging feature in Xen through 4.8.x mismanages page ...
CVE-2017-10914The grant-table feature in Xen through 4.8.x has a race condition ...
CVE-2017-10913The grant-table feature in Xen through 4.8.x provides false mapping ...
CVE-2017-10912Xen through 4.8.x mishandles page transfer, which allows guest OS users ...
CVE-2016-9932CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows ...
CVE-2016-9386The x86 emulator in Xen does not properly treat x86 NULL segments as ...
CVE-2016-9385The x86 segment base write emulation functionality in Xen 4.4.x ...
CVE-2016-9384Xen 4.7 allows local guest OS users to obtain sensitive host ...
CVE-2016-9383Xen, when running on a 64-bit hypervisor, allows local x86 guest OS ...
CVE-2016-9382Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, ...
CVE-2016-9381Race condition in QEMU in Xen allows local x86 HVM guest OS ...
CVE-2016-9380The pygrub boot loader emulator in Xen, when nul-delimited output ...
CVE-2016-9379The pygrub boot loader emulator in Xen, when S-expression output ...
CVE-2016-9378Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when ...
CVE-2016-9377Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when ...
CVE-2016-7777Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which ...
CVE-2016-7154Use-after-free vulnerability in the FIFO event channel code in Xen ...
CVE-2016-7094Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS ...
CVE-2016-7093Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to ...
CVE-2016-7092The get_page_from_l3e function in arch/x86/mm.c in Xen allows local ...
CVE-2016-6259Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access ...
CVE-2016-6258The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows ...
CVE-2016-5242The p2m_teardown function in arch/arm/p2m.c in Xen 4.4.x through 4.6.x ...
CVE-2016-4480The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen ...
CVE-2016-3960Integer overflow in the x86 shadow pagetable code in Xen allows local ...
CVE-2016-3712Integer overflow in the VGA module in QEMU allows local guest OS users ...
CVE-2016-3710The VGA module in QEMU improperly performs bounds checking on banked ...
CVE-2016-3159The fpu_fxrstor function in arch/x86/i387.c in Xen 4.x does not ...
CVE-2016-3158The xrstor function in arch/x86/xstate.c in Xen 4.x does not properly ...
CVE-2016-2271VMX in Xen 4.6.x and earlier, when using an Intel or Cyrix CPU, allows ...
CVE-2016-2270Xen 4.6.x and earlier allows local guest administrators to cause a ...
CVE-2016-1571The paging_invlpg function in include/asm-x86/paging.h in Xen 3.3.x ...
CVE-2016-1570The PV superpage functionality in arch/x86/mm.c in Xen 3.4.0, 3.4.1, ...
CVE-2016-10025VMFUNC emulation in Xen 4.6.x through 4.8.x on x86 systems using AMD ...
CVE-2016-10024Xen through 4.8.x allows local x86 PV guest OS kernel administrators ...
CVE-2016-10013Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to gain ...
CVE-2015-8615The hvm_set_callback_via function in arch/x86/hvm/irq.c in Xen 4.6 ...
CVE-2015-8555Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU ...
CVE-2015-8554Buffer overflow in hw/pt-msi.c in Xen 4.6.x and earlier, when using ...
CVE-2015-8550Xen, when used on a system providing PV backends, allows local guest ...
CVE-2015-8340The memory_exchange function in common/memory.c in Xen 3.2.x through ...
CVE-2015-8339The memory_exchange function in common/memory.c in Xen 3.2.x through ...
CVE-2015-8338Xen 4.6.x and earlier does not properly enforce limits on page order ...
CVE-2015-8104The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x ...
CVE-2015-7972The (1) libxl_set_memory_target function in tools/libxl/libxl.c and ...
CVE-2015-7971Xen 3.2.x through 4.6.x does not limit the number of printk console ...
CVE-2015-7970The p2m_pod_emergency_sweep function in arch/x86/mm/p2m-pod.c in Xen ...
CVE-2015-7969Multiple memory leaks in Xen 4.0 through 4.6.x allow local guest ...
CVE-2015-7835The mod_l2_entry function in arch/x86/mm.c in Xen 3.4 through 4.6.x ...
CVE-2015-7814Race condition in the relinquish_memory function in arch/arm/domain.c ...
CVE-2015-7813Xen 4.4.x, 4.5.x, and 4.6.x does not limit the number of printk ...
CVE-2015-7812The hypercall_create_continuation function in arch/arm/domain.c in Xen ...
CVE-2015-6654The xenmem_add_to_physmap_one function in arch/arm/mm.c in Xen 4.5.x, ...
CVE-2015-5307The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x ...
CVE-2015-5166Use-after-free vulnerability in QEMU in Xen 4.5.x and earlier does not ...
CVE-2015-5165The C+ mode offload emulation in the RTL8139 network card device model ...
CVE-2015-5154Heap-based buffer overflow in the IDE subsystem in QEMU, as used in ...
CVE-2015-4164The compat_iret function in Xen 3.1 through 4.5 iterates the wrong way ...
CVE-2015-4163GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the ...
CVE-2015-4106QEMU does not properly restrict write access to the PCI config space ...
CVE-2015-4105Xen 3.3.x through 4.5.x enables logging for PCI MSI-X pass-through ...
CVE-2015-4104Xen 3.3.x through 4.5.x does not properly restrict access to PCI MSI ...
CVE-2015-4103Xen 3.3.x through 4.5.x does not properly restrict write access to the ...
CVE-2015-3456The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and ...
CVE-2015-3340Xen 4.2.x through 4.5.x does not initialize certain fields, which ...
CVE-2015-3214The pit_ioport_read in i8254.c in the Linux kernel before 2.6.33 and ...
CVE-2015-3209Heap-based buffer overflow in the PCNET controller in QEMU allows ...
CVE-2015-2756QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict ...
CVE-2015-2752The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, ...
CVE-2015-2751Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, ...
CVE-2015-2151The x86 emulator in Xen 3.2.x through 4.5.x does not properly ignore ...
CVE-2015-2045The HYPERVISOR_xen_version hypercall in Xen 3.2.x through 4.5.x does ...
CVE-2015-2044The emulation routines for unspecified X86 devices in Xen 3.2.x ...
CVE-2015-1563The ARM GIC distributor virtualization in Xen 4.4.x and 4.5.x allows ...
CVE-2015-0361Use-after-free vulnerability in Xen 4.2.x, 4.3.x, and 4.4.x allows ...
CVE-2015-0268The vgic_v2_to_sgi function in arch/arm/vgic-v2.c in Xen 4.5.x, when ...
CVE-2014-9065common/spinlock.c in Xen 4.4.x and earlier does not properly handle ...
CVE-2014-9030The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x ...
CVE-2014-8867The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, ...
CVE-2014-8866The compatibility mode hypercall argument translation in Xen 3.3.x ...
CVE-2014-8595arch/x86/x86_emulate/x86_emulate.c in Xen 3.2.1 through 4.4.x does not ...
CVE-2014-8594The do_mmu_update function in arch/x86/mm.c in Xen 4.x through 4.4.x ...
CVE-2014-7188The hvm_msr_read_intercept function in arch/x86/hvm/hvm.c in Xen 4.1 ...
CVE-2014-7156The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen ...
CVE-2014-7155The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen ...
CVE-2014-7154Race condition in HVMOP_track_dirty_vram in Xen 4.0.0 through 4.4.x ...
CVE-2014-6268The evtchn_fifo_set_pending function in Xen 4.4.x allows local guest ...
CVE-2014-5148Xen 4.4.x, when running on an ARM system and "handling an unknown ...
CVE-2014-5147Xen 4.4.x, when running a 64-bit kernel on an ARM system, does not ...
CVE-2014-4883resolv.c in the DNS resolver in uIP, and dns.c in the DNS resolver in ...
CVE-2014-4022The alloc_domain_struct function in arch/arm/domain.c in Xen 4.4.x, ...
CVE-2014-4021Xen 3.2.x through 4.4.x does not properly clean memory pages recovered ...
CVE-2014-3969Xen 4.4.x, when running on an ARM system, does not properly check ...
CVE-2014-3968The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x allows ...
CVE-2014-3967The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x does not ...
CVE-2014-3717Xen 4.4.x does not properly validate the load address for 64-bit ARM ...
CVE-2014-3716Xen 4.4.x does not properly check alignment, which allows local users ...
CVE-2014-3715Buffer overflow in Xen 4.4.x allows local users to read system memory ...
CVE-2014-3714The ARM image loading functionality in Xen 4.4.x does not properly ...
CVE-2014-3672The qemu implementation in libvirt before 1.3.0 and Xen allows local ...
CVE-2014-3125Xen 4.4.x, when running on an ARM system, does not properly context ...
CVE-2014-3124The HVMOP_set_mem_type control in Xen 4.1 through 4.4.x allows local ...
CVE-2014-2986The vgic_distr_mmio_write function in the virtual guest interrupt ...
CVE-2014-2915Xen 4.4.x, when running on ARM systems, does not properly restrict ...
CVE-2014-2599The HVMOP_set_mem_access HVM control operations in Xen 4.1.x for ...
CVE-2014-1950Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen ...
CVE-2014-1896The (1) do_send and (2) do_recv functions in io.c in libvchan in Xen ...
CVE-2014-1895Off-by-one error in the flask_security_avc_cachestats function in ...
CVE-2014-1894Multiple integer overflows in unspecified suboperations in the flask ...
CVE-2014-1893Multiple integer overflows in the (1) FLASK_GETBOOL and (2) ...
CVE-2014-1892Xen 3.3 through 4.1, when XSM is enabled, allows local users to cause ...
CVE-2014-1891Multiple integer overflows in the (1) FLASK_GETBOOL, (2) ...
CVE-2014-1666The do_physdev_op function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, ...
CVE-2014-1642The IRQ setup in Xen 4.2.x and 4.3.x, when using device passthrough ...
CVE-2013-6400Xen 4.2.x and 4.3.x, when using Intel VT-d and a PCI device has been ...
CVE-2013-6375Xen 4.2.x and 4.3.x, when using Intel VT-d for PCI passthrough, does ...
CVE-2013-4554Xen 3.0.3 through 4.1.x (possibly 4.1.6.1), 4.2.x (possibly 4.2.3), ...
CVE-2013-4553The XEN_DOMCTL_getmemlist hypercall in Xen 3.4.x through 4.3.x ...
CVE-2013-4551Xen 4.2.x and 4.3.x, when nested virtualization is disabled, does not ...
CVE-2013-4494Xen before 4.1.x, 4.2.x, and 4.3.x does not take the page_alloc_lock ...
CVE-2013-4416The Ocaml xenstored implementation (oxenstored) in Xen 4.1.x, 4.2.x, ...
CVE-2013-4375The qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before ...
CVE-2013-4371Use-after-free vulnerability in the libxl_list_cpupool function in the ...
CVE-2013-4370The ocaml binding for the xc_vcpu_getaffinity function in Xen 4.2.x ...
CVE-2013-4369The xlu_vif_parse_rate function in the libxlu library in Xen 4.2.x and ...
CVE-2013-4368The outs instruction emulation in Xen 3.1.x, 4.2.x, 4.3.x, and ...
CVE-2013-4361The fbld instruction emulation in Xen 3.3.x through 4.3.x does not use ...
CVE-2013-4356Xen 4.3.x writes hypervisor mappings to certain shadow pagetables when ...
CVE-2013-4355Xen 4.3.x and earlier does not properly handle certain errors, which ...
CVE-2013-4344Buffer overflow in the SCSI implementation in QEMU, as used in Xen, ...
CVE-2013-4329The xenlight library (libxl) in Xen 4.0.x through 4.2.x, when IOMMU is ...
CVE-2013-2211The libxenlight (libxl) toolstack library in Xen 4.0.x, 4.1.x, and ...
CVE-2013-2196Multiple unspecified vulnerabilities in the Elf parser (libelf) in Xen ...
CVE-2013-2195The Elf parser (libelf) in Xen 4.2.x and earlier allow local guest ...
CVE-2013-2194Multiple integer overflows in the Elf parser (libelf) in Xen 4.2.x and ...
CVE-2013-2078Xen 4.0.2 through 4.0.4, 4.1.x, and 4.2.x allows local PV guest users ...
CVE-2013-2077Xen 4.0.x, 4.1.x, and 4.2.x does not properly restrict the contents of ...
CVE-2013-2076Xen 4.0.x, 4.1.x, and 4.2.x, when running on AMD64 processors, only ...
CVE-2013-2072Buffer overflow in the Python bindings for the xc_vcpu_setaffinity ...
CVE-2013-1964Xen 4.0.x and 4.1.x incorrectly releases a grant reference when ...
CVE-2013-1952Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, ...
CVE-2013-1922qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw ...
CVE-2013-1920Xen 4.2.x, 4.1.x, and earlier, when the hypervisor is running "under ...
CVE-2013-1919Xen 4.2.x and 4.1.x does not properly restrict access to IRQs, which ...
CVE-2013-1918Certain page table manipulation operations in Xen 4.1.x, 4.2.x, and ...
CVE-2013-1917Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not ...
CVE-2013-1442Xen 4.0 through 4.3.x, when using AVX or LWP capable CPUs, does not ...
CVE-2013-1432Xen 4.1.x and 4.2.x, when the XSA-45 patch is in place, does not ...
CVE-2013-0215oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly ...
CVE-2013-0154The get_page_type function in xen/arch/x86/mm.c in Xen 4.2, when ...
CVE-2013-0153The AMD IOMMU support in Xen 4.2.x, 4.1.x, 3.3, and other versions, ...
CVE-2013-0152Memory leak in Xen 4.2 and unstable allows local HVM guests to cause a ...
CVE-2013-0151The do_hvm_op function in xen/arch/x86/hvm/hvm.c in Xen 4.2.x on the ...
CVE-2012-6333Multiple HVM control operations in Xen 3.4 through 4.2 allow local HVM ...
CVE-2012-6075Buffer overflow in the e1000_receive function in the e1000 device ...
CVE-2012-6036The (1) memc_save_get_next_page, (2) tmemc_restore_put_page and (3) ...
CVE-2012-6035The do_tmem_destroy_pool function in the Transcendent Memory (TMEM) in ...
CVE-2012-6034The (1) tmemc_save_get_next_page and (2) tmemc_save_get_next_inv ...
CVE-2012-6033The do_tmem_control function in the Transcendent Memory (TMEM) in Xen ...
CVE-2012-6032Multiple integer overflows in the (1) tmh_copy_from_client and (2) ...
CVE-2012-6031The do_tmem_get function in the Transcendent Memory (TMEM) in Xen 4.0, ...
CVE-2012-6030The do_tmem_op function in the Transcendent Memory (TMEM) in Xen 4.0, ...
CVE-2012-5634Xen 4.2.x, 4.1.x, and 4.0, when using Intel VT-d for PCI passthrough, ...
CVE-2012-5525The get_page_from_gfn hypercall function in Xen 4.2 allows local PV ...
CVE-2012-5515The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and ...
CVE-2012-5514The guest_physmap_mark_populate_on_demand function in Xen 4.2 and ...
CVE-2012-5513The XENMEM_exchange handler in Xen 4.2 and earlier does not properly ...
CVE-2012-5512Array index error in the HVMOP_set_mem_access handler in Xen 4.1 ...
CVE-2012-5511Stack-based buffer overflow in the dirty video RAM tracking ...
CVE-2012-5510Xen 4.x, when downgrading the grant table version, does not properly ...
CVE-2012-4544The PV domain builder in Xen 4.2 and earlier does not validate the ...
CVE-2012-4539Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit ...
CVE-2012-4538The HVMOP_pagetable_dying hypercall in Xen 4.0, 4.1, and 4.2 does not ...
CVE-2012-4537Xen 3.4 through 4.2, and possibly earlier versions, does not properly ...
CVE-2012-4536The (1) domain_pirq_to_emuirq and (2) physdev_unmap_pirq functions in ...
CVE-2012-4535Xen 3.4 through 4.2, and possibly earlier versions, allows local guest ...
CVE-2012-4411The graphical console in Xen 4.0, 4.1 and 4.2 allows local OS guest ...
CVE-2012-3516The GNTTABOP_swap_grant_ref sub-operation in the grant table hypercall ...
CVE-2012-3515Qemu, as used in Xen 4.0, 4.1 and possibly other products, when ...
CVE-2012-3498PHYSDEVOP_map_pirq in Xen 4.1 and 4.2 and Citrix XenServer 6.0.2 and ...
CVE-2012-3497(1) TMEMC_SAVE_GET_CLIENT_WEIGHT, (2) TMEMC_SAVE_GET_CLIENT_CAP, (3) ...
CVE-2012-3496XENMEM_populate_physmap in Xen 4.0, 4.1, and 4.2, and Citrix XenServer ...
CVE-2012-3495The physdev_get_free_pirq hypercall in arch/x86/physdev.c in Xen 4.1.x ...
CVE-2012-3494The set_debugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, ...
CVE-2012-3433Xen 4.0 and 4.1 allows local HVM guest OS kernels to cause a denial of ...
CVE-2012-3432The handle_mmio function in arch/x86/hvm/io.c in the MMIO operations ...
CVE-2012-2934Xen 4.0, and 4.1, when running a 64-bit PV guest on "older" AMD CPUs, ...
CVE-2012-2625The PyGrub boot loader in Xen unstable before changeset ...
CVE-2012-0218Xen 3.4, 4.0, and 4.1, when the guest OS has not registered a handler ...
CVE-2012-0217The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, ...
CVE-2012-0029Heap-based buffer overflow in the process_tx_desc function in the ...
CVE-2011-4111Buffer overflow in the ccid_card_vscard_handle_message function in ...
CVE-2011-3262tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 ...
CVE-2011-3131Xen 4.1.1 and earlier allows local guest OS kernels with control of a ...
CVE-2011-2901Off-by-one error in the __addr_ok macro in Xen 3.3 and earlier allows ...
CVE-2011-2519Xen in the Linux kernel, when running a guest on a host without ...
CVE-2011-1898Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough ...
CVE-2011-1583Multiple integer overflows in tools/libxc/xc_dom_bzimageloader.c in ...
CVE-2011-1166Xen, possibly before 4.0.2, allows local 64-bit PV guests to cause a ...
CVE-2010-4255The fixup_page_fault function in arch/x86/traps.c in Xen 4.0.1 and ...
CVE-2010-2938arch/x86/hvm/vmx/vmcs.c in the virtual-machine control structure ...

Security announcements

DSA / DLADescription
DLA-1132-1xen - security update
DSA-3969-1xen - security update
DSA-3969-1xen - security update
DLA-964-1xen - security update
DSA-3847-1xen - security update
DLA-907-1xen - security update
DLA-783-1xen - security update
DSA-3729-1xen - security update
DLA-720-1xen - security update
DLA-699-1xen - security update
DSA-3663-1xen - security update
DLA-614-1xen - security update
DLA-571-1xen - security update
DSA-3633-1xen - security update
DLA-479-1xen - security update
DSA-3554-1xen - security update
DSA-3519-1xen - security update
DSA-3414-1xen - security update
DSA-3390-1xen - security update
DSA-3390-1xen - security update
DSA-3286-1xen - security update
DSA-3286-1xen - security update
DSA-3262-1xen - security update
DSA-3181-1xen - security update
DSA-3140-1xen - security update
DSA-3041-1xen - security update
DSA-3006-1xen - security update
DSA-2666-1xen - several
DSA-2666-1xen - several
DSA-2662-1xen - several
DSA-2636-1xen - several
DSA-2582-1xen - denial of service
DSA-2544-1xen - denial of service
DSA-2531-1xen - several
DSA-2501-1xen - several
DSA-2337-1xen - several vulnerabilities

Search for package or bug name: Reporting problems