The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Xen

vulnerability alert CVE-2018-19967

Xen: denial of service via Intel HLE Transaction

Synthesis of the vulnerability

Impacted products: Debian, Fedora, SUSE Linux Enterprise Desktop, SLES, Xen.
Severity: 1/4.
Consequences: denial of service on server, denial of service on service.
Provenance: user shell.
Confidence: confirmed by the editor (5/5).
Creation date: 07/11/2018.
Identifiers: CERTFR-2018-AVI-534, CVE-2018-19967, DSA-4369-1, FEDORA-2018-8e457298ce, FEDORA-2018-fe24359b69, SUSE-SU-2019:0003-1, SUSE-SU-2019:13921-1, VIGILANCE-VUL-27711, XSA-282.

Description of the vulnerability

An attacker, inside a guest system, can generate a fatal error via Intel HLE Transaction of Xen, in order to trigger a denial of service on the host system.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability note CVE-2018-18883

Xen: NULL pointer dereference via Disabled Nested VT-x

Synthesis of the vulnerability

Impacted products: XenServer, Fedora, openSUSE Leap, SUSE Linux Enterprise Desktop, SLES, Xen.
Severity: 2/4.
Consequences: denial of service on server, denial of service on service.
Provenance: user shell.
Confidence: confirmed by the editor (5/5).
Creation date: 25/10/2018.
Identifiers: CERTFR-2018-AVI-514, CERTFR-2018-AVI-520, CTX239100, CVE-2018-18883, FEDORA-2018-73dd8de892, FEDORA-2018-a24754252a, FEDORA-2018-f20a0cead5, openSUSE-SU-2018:4111-1, openSUSE-SU-2018:4304-1, SUSE-SU-2018:4070-1, SUSE-SU-2018:4300-1, SUSE-SU-2019:0003-1, VIGILANCE-VUL-27614, XSA-278.

Description of the vulnerability

An attacker, inside a guest system, can force a NULL pointer to be dereferenced via Disabled Nested VT-x of Xen, in order to trigger a denial of service on the host system.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability alert CVE-2018-15470

Xen: denial of service via Oxenstored Quota-maxentity

Synthesis of the vulnerability

Impacted products: Debian, Fedora, openSUSE Leap, SUSE Linux Enterprise Desktop, SLES, Xen.
Severity: 1/4.
Consequences: denial of service on server, denial of service on service.
Provenance: user shell.
Confidence: confirmed by the editor (5/5).
Creation date: 16/08/2018.
Identifiers: CERTFR-2018-AVI-388, CVE-2018-15470, DLA-1577-1, FEDORA-2018-683dfde81a, FEDORA-2018-915602df63, openSUSE-SU-2018:4304-1, SUSE-SU-2018:3490-1, SUSE-SU-2018:4300-1, VIGILANCE-VUL-27006, XSA-272.

Description of the vulnerability

An attacker, inside a guest system, can generate a fatal error via Oxenstored Quota-maxentity of Xen, in order to trigger a denial of service on the host system.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability note CVE-2018-15471

Xen: privilege escalation via Linux Netback Driver

Synthesis of the vulnerability

Impacted products: XenServer, Debian, Fedora, Linux, Ubuntu, WindRiver Linux, Xen.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights, data reading, denial of service on server.
Provenance: user shell.
Confidence: confirmed by the editor (5/5).
Creation date: 16/08/2018.
Identifiers: CERTFR-2018-AVI-388, CERTFR-2018-AVI-391, CERTFR-2018-AVI-557, CTX236548, CVE-2018-15471, DSA-4313-1, FEDORA-2018-79d7c3d2df, FEDORA-2018-8422d94975, USN-3819-1, USN-3820-1, USN-3820-2, USN-3820-3, VIGILANCE-VUL-27004, XSA-270.

Description of the vulnerability

An attacker can bypass restrictions via Linux Netback Driver of Xen, in order to escalate his privileges.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability bulletin CVE-2018-15468

Xen: denial of service via x86 MSR_DEBUGCTL

Synthesis of the vulnerability

Impacted products: XenServer, Fedora, openSUSE Leap, SUSE Linux Enterprise Desktop, SLES, Xen.
Severity: 1/4.
Consequences: denial of service on server, denial of service on service.
Provenance: privileged shell.
Confidence: confirmed by the editor (5/5).
Creation date: 16/08/2018.
Identifiers: CERTFR-2018-AVI-388, CERTFR-2018-AVI-391, CTX236548, CVE-2018-15468, FEDORA-2018-683dfde81a, FEDORA-2018-915602df63, openSUSE-SU-2018:4304-1, SUSE-SU-2018:3332-1, SUSE-SU-2018:3490-1, SUSE-SU-2018:4300-1, VIGILANCE-VUL-27003, XSA-269.

Description of the vulnerability

An attacker, inside a guest system, can generate a fatal error via x86 MSR_DEBUGCTL of Xen, in order to trigger a denial of service on the host system.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability announce CVE-2018-15469

Xen: denial of service via ARM V2 Grant Tables

Synthesis of the vulnerability

Impacted products: Debian, Fedora, openSUSE Leap, SUSE Linux Enterprise Desktop, SLES, Xen.
Severity: 1/4.
Consequences: denial of service on server, denial of service on service, denial of service on client.
Provenance: user shell.
Confidence: confirmed by the editor (5/5).
Creation date: 16/08/2018.
Identifiers: CERTFR-2018-AVI-388, CVE-2018-15469, DLA-1577-1, FEDORA-2018-683dfde81a, FEDORA-2018-915602df63, openSUSE-SU-2018:4304-1, SUSE-SU-2018:3490-1, SUSE-SU-2018:4300-1, VIGILANCE-VUL-27002, XSA-268.

Description of the vulnerability

An attacker, inside a guest system, can generate a fatal error via ARM V2 Grant Tables of Xen, in order to trigger a denial of service on the host system.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability note CVE-2018-3646

Intel processors: information disclosure via Foreshadow L1TF Virtualization

Synthesis of the vulnerability

Impacted products: SNS, Mac OS X, Arkoon FAST360, Cisco ASR, Nexus by Cisco, NX-OS, Cisco UCS, XenServer, Debian, NetWorker, Unisphere EMC, BIG-IP Hardware, TMOS, Fedora, FreeBSD, HP ProLiant, QRadar SIEM, Windows 10, Windows 2008 R0, Windows 2008 R2, Windows 2012, Windows 2016, Windows 7, Windows 8, Windows (platform) ~ not comprehensive, Windows RT, OpenBSD, openSUSE Leap, Solaris, pfSense, RHEL, SIMATIC, SUSE Linux Enterprise Desktop, SLES, Synology DSM, Ubuntu, Unix (platform) ~ not comprehensive, ESXi, vCenter Server, VMware vSphere Hypervisor, VMware Workstation, WindRiver Linux, Xen.
Severity: 2/4.
Consequences: data reading.
Provenance: user shell.
Confidence: confirmed by the editor (5/5).
Creation date: 16/08/2018.
Identifiers: 525211, 528031, ADV180018, CERTFR-2018-AVI-385, CERTFR-2018-AVI-386, CERTFR-2018-AVI-387, CERTFR-2018-AVI-388, CERTFR-2018-AVI-390, CERTFR-2018-AVI-391, CERTFR-2018-AVI-392, CERTFR-2018-AVI-416, CERTFR-2018-AVI-419, CERTFR-2018-AVI-426, CERTFR-2018-AVI-557, CERTFR-2018-AVI-584, cisco-sa-20180814-cpusidechannel, cpujan2019, CTX236548, CVE-2018-3646, DLA-1481-1, DLA-1506-1, DSA-2018-170, DSA-2018-217, DSA-4274-1, DSA-4279-1, DSA-4279-2, FEDORA-2018-1c80fea1cd, FEDORA-2018-f8cba144ae, Foreshadow, FreeBSD-SA-18:09.l1tf, HPESBHF03874, HT209139, HT209193, ibm10742755, INTEL-SA-00161, K31300402, openSUSE-SU-2018:2399-1, openSUSE-SU-2018:2404-1, openSUSE-SU-2018:2407-1, openSUSE-SU-2018:2434-1, openSUSE-SU-2018:2436-1, openSUSE-SU-2018:4304-1, RHSA-2018:2384-01, RHSA-2018:2387-01, RHSA-2018:2388-01, RHSA-2018:2389-01, RHSA-2018:2390-01, RHSA-2018:2391-01, RHSA-2018:2392-01, RHSA-2018:2393-01, RHSA-2018:2394-01, RHSA-2018:2395-01, RHSA-2018:2396-01, RHSA-2018:2602-01, RHSA-2018:2603-01, SSA-254686, STORM-2018-005, SUSE-SU-2018:2328-1, SUSE-SU-2018:2331-1, SUSE-SU-2018:2332-1, SUSE-SU-2018:2335-1, SUSE-SU-2018:2338-1, SUSE-SU-2018:2344-1, SUSE-SU-2018:2362-1, SUSE-SU-2018:2366-1, SUSE-SU-2018:2374-1, SUSE-SU-2018:2380-1, SUSE-SU-2018:2381-1, SUSE-SU-2018:2384-1, SUSE-SU-2018:2394-1, SUSE-SU-2018:2401-1, SUSE-SU-2018:2409-1, SUSE-SU-2018:2410-1, SUSE-SU-2018:2480-1, SUSE-SU-2018:2482-1, SUSE-SU-2018:2483-1, SUSE-SU-2018:2528-1, SUSE-SU-2018:2596-1, SUSE-SU-2018:2637-1, SUSE-SU-2018:3490-1, SUSE-SU-2018:4300-1, Synology-SA-18:45, USN-3740-1, USN-3740-2, USN-3741-1, USN-3741-2, USN-3741-3, USN-3742-1, USN-3742-2, USN-3742-3, USN-3756-1, USN-3823-1, VIGILANCE-VUL-26999, VMSA-2018-0020, VU#982149, XSA-273.

Description of the vulnerability

An attacker can bypass access restrictions to data via L1TF Virtualization on Intel processors, in order to obtain sensitive information.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability bulletin CVE-2018-3620

Intel processors: information disclosure via Foreshadow L1TF OS/SMM

Synthesis of the vulnerability

Impacted products: SNS, Arkoon FAST360, Cisco ASR, Nexus by Cisco, NX-OS, Cisco UCS, XenServer, Debian, NetWorker, Unisphere EMC, BIG-IP Hardware, TMOS, Fedora, FreeBSD, HP ProLiant, QRadar SIEM, Junos Space, Linux, Windows 10, Windows 2008 R0, Windows 2008 R2, Windows 2012, Windows 2016, Windows 7, Windows 8, Windows (platform) ~ not comprehensive, Windows RT, OpenBSD, openSUSE Leap, pfSense, RHEL, SIMATIC, Slackware, SUSE Linux Enterprise Desktop, SLES, Synology DSM, Ubuntu, Unix (platform) ~ not comprehensive, vCenter Server, WindRiver Linux, Xen.
Severity: 2/4.
Consequences: data reading.
Provenance: user shell.
Confidence: confirmed by the editor (5/5).
Creation date: 16/08/2018.
Identifiers: 525211, 528031, ADV180018, CERTFR-2018-AVI-385, CERTFR-2018-AVI-386, CERTFR-2018-AVI-387, CERTFR-2018-AVI-388, CERTFR-2018-AVI-390, CERTFR-2018-AVI-391, CERTFR-2018-AVI-392, CERTFR-2018-AVI-416, CERTFR-2018-AVI-419, CERTFR-2018-AVI-426, CERTFR-2018-AVI-557, CERTFR-2018-AVI-584, cisco-sa-20180814-cpusidechannel, CTX236548, CVE-2018-3620, DLA-1481-1, DLA-1506-1, DLA-1529-1, DSA-2018-170, DSA-2018-217, DSA-4274-1, DSA-4279-1, DSA-4279-2, FEDORA-2018-1c80fea1cd, FEDORA-2018-f8cba144ae, Foreshadow, FreeBSD-SA-18:09.l1tf, HPESBHF03874, ibm10742755, INTEL-SA-00161, JSA10917, K95275140, openSUSE-SU-2018:2404-1, openSUSE-SU-2018:2407-1, RHSA-2018:2384-01, RHSA-2018:2387-01, RHSA-2018:2388-01, RHSA-2018:2389-01, RHSA-2018:2390-01, RHSA-2018:2391-01, RHSA-2018:2392-01, RHSA-2018:2393-01, RHSA-2018:2394-01, RHSA-2018:2395-01, RHSA-2018:2396-01, RHSA-2018:2602-01, RHSA-2018:2603-01, SSA:2018-240-01, SSA-254686, STORM-2018-005, SUSE-SU-2018:2328-1, SUSE-SU-2018:2332-1, SUSE-SU-2018:2344-1, SUSE-SU-2018:2362-1, SUSE-SU-2018:2366-1, SUSE-SU-2018:2374-1, SUSE-SU-2018:2380-1, SUSE-SU-2018:2381-1, SUSE-SU-2018:2384-1, SUSE-SU-2018:2596-1, SUSE-SU-2018:2637-1, Synology-SA-18:45, USN-3740-1, USN-3740-2, USN-3741-1, USN-3741-2, USN-3741-3, USN-3742-1, USN-3742-2, USN-3742-3, USN-3823-1, VIGILANCE-VUL-26998, VMSA-2018-0021, VU#982149, XSA-273.

Description of the vulnerability

An attacker can bypass access restrictions to data via L1TF OS/SMM on Intel processors, in order to obtain sensitive information.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability bulletin CVE-2018-12892

Xen: privilege escalation via Libxl HVM Emulated SCSI Disks Readonly Flag

Synthesis of the vulnerability

Impacted products: Debian, Fedora, openSUSE Leap, SUSE Linux Enterprise Desktop, SLES, Xen.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights.
Provenance: user shell.
Confidence: confirmed by the editor (5/5).
Creation date: 28/06/2018.
Identifiers: CERTFR-2018-AVI-314, CERTFR-2018-AVI-316, CVE-2018-12892, DSA-4236-1, FEDORA-2018-1a467757ce, FEDORA-2018-a7862a75f5, openSUSE-SU-2018:2116-1, openSUSE-SU-2018:2211-1, SUSE-SU-2018:1981-1, SUSE-SU-2018:2059-1, SUSE-SU-2018:2081-1, VIGILANCE-VUL-26563, XSA-266.

Description of the vulnerability

An attacker, inside a guest system, can bypass restrictions via Libxl HVM Emulated SCSI Disks Readonly Flag of Xen, in order to escalate his privileges on the host system.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability announce CVE-2018-12893

Xen: denial of service via X86 DB Exception Safety Check

Synthesis of the vulnerability

Impacted products: XenServer, Debian, Fedora, openSUSE Leap, SUSE Linux Enterprise Desktop, SLES, Xen.
Severity: 1/4.
Consequences: denial of service on server, denial of service on service.
Provenance: user shell.
Confidence: confirmed by the editor (5/5).
Creation date: 28/06/2018.
Identifiers: CERTFR-2018-AVI-314, CERTFR-2018-AVI-316, CERTFR-2018-AVI-318, CTX235748, CVE-2018-12893, DLA-1577-1, DSA-4236-1, FEDORA-2018-1a467757ce, FEDORA-2018-a7862a75f5, openSUSE-SU-2018:2116-1, openSUSE-SU-2018:2211-1, SUSE-SU-2018:1981-1, SUSE-SU-2018:2037-1, SUSE-SU-2018:2056-1, SUSE-SU-2018:2059-1, SUSE-SU-2018:2069-1, SUSE-SU-2018:2081-1, SUSE-SU-2018:2528-1, VIGILANCE-VUL-26562, XSA-265.

Description of the vulnerability

An attacker, inside a guest system, can generate a fatal error via X86 DB Exception Safety Check of Xen, in order to trigger a denial of service on the host system.
Complete Vigil@nce bulletin.... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about Xen: