English | Deutsch | Español
 
Startseite ▼
Startseite Über uns Kontact Datenschutz Partnerprogramme Zeugnisse In der Presse Mailinglisten Missbrauch Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Sicherheits
Überprüfungs ▼
Home Dediziert Erweitert Standard Wiederkehrend Risikolos Desktop Basis Sicherheits Segal FAQ Preis/Funktionszusammenfassung Bestellen Neue Anfälligkeiten Alle Anfälligkeiten Vertraulichkeit Anfälligkeiten Suche Durchführen Terminkalender IP Permissions Maßgeschneidert Warteschlange Erinnerer Siegel Berichte Berichts Stil
Verwaltetes
DNS ▼
Info Bestellen/Erneuern FAQ AUP Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password
Netzwerk
Überwachung ▼
Enterprise Erweiterte Standard Gratis Test FAQ Preis/Funktionszusammenfassung Bestellen Beispiele
Konfigurieren/Status Alarm Profile
Recherce
Berichte ▼
Home FAQ Glossary Archive
 Anmeldung/Registrierung 
 
 Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.851315
Kategorie:SuSE Local Security Checks
Titel:SUSE: Security Advisory for xen (SUSE-SU-2016:1318-1)
Zusammenfassung:The remote host is missing an update for the 'xen'; package(s) announced via the referenced advisory.
Beschreibung:Summary:
The remote host is missing an update for the 'xen'
package(s) announced via the referenced advisory.

Vulnerability Insight:
xen was updated to fix 46 security issues.

These security issues were fixed:

- CVE-2013-4527: Buffer overflow in hw/timer/hpet.c might have allowed
remote attackers to execute arbitrary code via vectors related to the
number of timers (bsc#964746).

- CVE-2013-4529: Buffer overflow in hw/pci/pcie_aer.c allowed remote
attackers to cause a denial of service and possibly execute arbitrary
code via a large log_num value in a savevm image (bsc#964929).

- CVE-2013-4530: Buffer overflow in hw/ssi/pl022.c allowed remote
attackers to cause a denial of service or possibly execute arbitrary
code via crafted tx_fifo_head and rx_fifo_head values in a savevm image
(bsc#964950).

- CVE-2013-4533: Buffer overflow in the pxa2xx_ssp_load function in
hw/arm/pxa2xx.c allowed remote attackers to cause a denial of service or
possibly execute arbitrary code via a crafted s- rx_level value in a
savevm image (bsc#964644).

- CVE-2013-4534: Buffer overflow in hw/intc/openpic.c allowed remote
attackers to cause a denial of service or possibly execute arbitrary
code via vectors related to IRQDest elements (bsc#964452).

- CVE-2013-4537: The ssi_sd_transfer function in hw/sd/ssi-sd.c allowed
remote attackers to execute arbitrary code via a crafted arglen value in
a savevm image (bsc#962642).

- CVE-2013-4538: Multiple buffer overflows in the ssd0323_load function in
hw/display/ssd0323.c allowed remote attackers to cause a denial of
service (memory corruption) or possibly execute arbitrary code via
crafted (1) cmd_len, (2) row, or (3) col values (4) row_start and
row_end values or (5) col_star and col_end values in a savevm image
(bsc#962335).

- CVE-2013-4539: Multiple buffer overflows in the tsc210x_load function in
hw/input/tsc210x.c might have allowed remote attackers to execute
arbitrary code via a crafted (1) precision, (2) nextprecision, (3)
function, or (4) nextfunction value in a savevm image (bsc#962758).

- CVE-2014-0222: Integer overflow in the qcow_open function in
block/qcow.c allowed remote attackers to cause a denial of service
(crash) via a large L2 table in a QCOW version 1 image (bsc#964925).

- CVE-2014-3640: The sosendto function in slirp/udp.c allowed local users
to cause a denial of service (NULL pointer dereference) by sending a udp
packet with a value of 0 in the source port and address, which triggers
access of an uninitialized socket (bsc#965112).

- CVE-2014-3689: The vmware-vga driver (hw/display/vmware_vga.c) allowed
local guest users to write to qemu memory locations ...

Description truncated, please see the referenced URL(s) for more information.

Affected Software/OS:
xen on SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Desktop 12

Solution:
Please install the updated package(s).

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2013-4527
http://lists.fedoraproject.org/pipermail/package-announce/2014-May/133345.html
http://lists.nongnu.org/archive/html/qemu-stable/2014-07/msg00187.html
RedHat Security Advisories: RHSA-2014:0927
http://rhn.redhat.com/errata/RHSA-2014-0927.html
Common Vulnerability Exposure (CVE) ID: CVE-2013-4529
http://lists.gnu.org/archive/html/qemu-devel/2013-12/msg00394.html
Common Vulnerability Exposure (CVE) ID: CVE-2013-4530
Common Vulnerability Exposure (CVE) ID: CVE-2013-4533
Common Vulnerability Exposure (CVE) ID: CVE-2013-4534
Common Vulnerability Exposure (CVE) ID: CVE-2013-4537
Common Vulnerability Exposure (CVE) ID: CVE-2013-4538
Common Vulnerability Exposure (CVE) ID: CVE-2013-4539
Common Vulnerability Exposure (CVE) ID: CVE-2014-0222
BugTraq ID: 67357
http://www.securityfocus.com/bid/67357
Debian Security Information: DSA-3044 (Google Search)
http://www.debian.org/security/2014/dsa-3044
http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134053.html
https://lists.gnu.org/archive/html/qemu-devel/2014-05/msg02155.html
SuSE Security Announcement: SUSE-SU-2015:0929 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00021.html
SuSE Security Announcement: openSUSE-SU-2015:1965 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-11/msg00063.html
Common Vulnerability Exposure (CVE) ID: CVE-2014-3640
Debian Security Information: DSA-3045 (Google Search)
http://www.debian.org/security/2014/dsa-3045
http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg03543.html
http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg04598.html
http://lists.nongnu.org/archive/html/qemu-devel/2014-09/msg04707.html
RedHat Security Advisories: RHSA-2015:0349
http://rhn.redhat.com/errata/RHSA-2015-0349.html
RedHat Security Advisories: RHSA-2015:0624
http://rhn.redhat.com/errata/RHSA-2015-0624.html
http://www.ubuntu.com/usn/USN-2409-1
Common Vulnerability Exposure (CVE) ID: CVE-2014-3689
Debian Security Information: DSA-3066 (Google Search)
http://www.debian.org/security/2014/dsa-3066
Debian Security Information: DSA-3067 (Google Search)
http://www.debian.org/security/2014/dsa-3067
https://www.mail-archive.com/qemu-devel@nongnu.org/msg261580.html
http://www.osvdb.org/114397
http://secunia.com/advisories/60923
http://secunia.com/advisories/62143
http://secunia.com/advisories/62144
Common Vulnerability Exposure (CVE) ID: CVE-2014-7815
http://secunia.com/advisories/61484
SuSE Security Announcement: SUSE-SU-2015:1782 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00019.html
Common Vulnerability Exposure (CVE) ID: CVE-2014-9718
BugTraq ID: 73316
http://www.securityfocus.com/bid/73316
Debian Security Information: DSA-3259 (Google Search)
http://www.debian.org/security/2015/dsa-3259
http://openwall.com/lists/oss-security/2015/04/20/7
Common Vulnerability Exposure (CVE) ID: CVE-2015-1779
BugTraq ID: 73303
http://www.securityfocus.com/bid/73303
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154656.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155196.html
https://security.gentoo.org/glsa/201602-01
https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04894.html
https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04896.html
https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04895.html
http://www.openwall.com/lists/oss-security/2015/03/24/9
http://www.openwall.com/lists/oss-security/2015/04/09/6
RedHat Security Advisories: RHSA-2015:1931
http://rhn.redhat.com/errata/RHSA-2015-1931.html
RedHat Security Advisories: RHSA-2015:1943
http://rhn.redhat.com/errata/RHSA-2015-1943.html
http://www.securitytracker.com/id/1033975
SuSE Security Announcement: SUSE-SU-2015:0870 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00033.html
SuSE Security Announcement: SUSE-SU-2015:0896 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00042.html
http://www.ubuntu.com/usn/USN-2608-1
Common Vulnerability Exposure (CVE) ID: CVE-2015-5278
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168077.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168646.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168671.html
http://www.openwall.com/lists/oss-security/2015/09/15/2
http://www.ubuntu.com/usn/USN-2745-1
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg03985.html
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg05832.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-6855
BugTraq ID: 76691
http://www.securityfocus.com/bid/76691
Debian Security Information: DSA-3361 (Google Search)
http://www.debian.org/security/2015/dsa-3361
Debian Security Information: DSA-3362 (Google Search)
http://www.debian.org/security/2015/dsa-3362
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169039.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169036.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-September/167369.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169327.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168602.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169341.html
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg02479.html
http://www.openwall.com/lists/oss-security/2015/09/10/1
http://www.openwall.com/lists/oss-security/2015/09/10/2
Common Vulnerability Exposure (CVE) ID: CVE-2015-7512
BugTraq ID: 78230
http://www.securityfocus.com/bid/78230
Debian Security Information: DSA-3469 (Google Search)
http://www.debian.org/security/2016/dsa-3469
Debian Security Information: DSA-3470 (Google Search)
http://www.debian.org/security/2016/dsa-3470
Debian Security Information: DSA-3471 (Google Search)
http://www.debian.org/security/2016/dsa-3471
http://www.openwall.com/lists/oss-security/2015/11/30/3
RedHat Security Advisories: RHSA-2015:2694
http://rhn.redhat.com/errata/RHSA-2015-2694.html
RedHat Security Advisories: RHSA-2015:2695
http://rhn.redhat.com/errata/RHSA-2015-2695.html
RedHat Security Advisories: RHSA-2015:2696
http://rhn.redhat.com/errata/RHSA-2015-2696.html
http://www.securitytracker.com/id/1034527
Common Vulnerability Exposure (CVE) ID: CVE-2015-7549
BugTraq ID: 80761
http://www.securityfocus.com/bid/80761
http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175380.html
http://www.openwall.com/lists/oss-security/2015/12/14/2
Common Vulnerability Exposure (CVE) ID: CVE-2015-8345
BugTraq ID: 77985
http://www.securityfocus.com/bid/77985
http://www.openwall.com/lists/oss-security/2015/11/25/11
https://lists.gnu.org/archive/html/qemu-devel/2015-10/msg03911.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-8504
BugTraq ID: 78708
http://www.securityfocus.com/bid/78708
http://www.openwall.com/lists/oss-security/2015/12/08/7
Common Vulnerability Exposure (CVE) ID: CVE-2015-8550
BugTraq ID: 79592
http://www.securityfocus.com/bid/79592
Debian Security Information: DSA-3434 (Google Search)
http://www.debian.org/security/2016/dsa-3434
Debian Security Information: DSA-3519 (Google Search)
http://www.debian.org/security/2016/dsa-3519
https://security.gentoo.org/glsa/201604-03
http://www.securitytracker.com/id/1034479
SuSE Security Announcement: SUSE-SU-2016:0911 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.html
SuSE Security Announcement: SUSE-SU-2016:1102 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00045.html
SuSE Security Announcement: SUSE-SU-2016:1764 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-8554
BugTraq ID: 79579
http://www.securityfocus.com/bid/79579
http://www.securitytracker.com/id/1034481
Common Vulnerability Exposure (CVE) ID: CVE-2015-8555
BugTraq ID: 79543
http://www.securityfocus.com/bid/79543
http://www.securitytracker.com/id/1034477
Common Vulnerability Exposure (CVE) ID: CVE-2015-8558
BugTraq ID: 80694
http://www.securityfocus.com/bid/80694
http://www.openwall.com/lists/oss-security/2015/12/14/9
http://www.openwall.com/lists/oss-security/2015/12/14/16
https://lists.gnu.org/archive/html/qemu-devel/2015-12/msg02124.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-8567
BugTraq ID: 79721
http://www.securityfocus.com/bid/79721
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176558.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176300.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175967.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176503.html
http://www.openwall.com/lists/oss-security/2015/12/15/10
https://lists.gnu.org/archive/html/qemu-devel/2015-12/msg02299.html
SuSE Security Announcement: SUSE-SU-2016:0873 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00087.html
SuSE Security Announcement: SUSE-SU-2016:0955 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00002.html
SuSE Security Announcement: SUSE-SU-2016:1318 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00049.html
SuSE Security Announcement: SUSE-SU-2016:1560 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00017.html
SuSE Security Announcement: SUSE-SU-2016:1703 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00058.html
SuSE Security Announcement: openSUSE-SU-2016:0123 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00010.html
SuSE Security Announcement: openSUSE-SU-2016:0126 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00012.html
SuSE Security Announcement: openSUSE-SU-2016:1750 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00003.html
http://www.ubuntu.com/usn/USN-2891-1
Common Vulnerability Exposure (CVE) ID: CVE-2015-8568
Common Vulnerability Exposure (CVE) ID: CVE-2015-8613
BugTraq ID: 79719
http://www.securityfocus.com/bid/79719
https://security.gentoo.org/glsa/201604-01
http://www.openwall.com/lists/oss-security/2015/12/22/1
https://lists.gnu.org/archive/html/qemu-devel/2015-12/msg03737.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-8619
BugTraq ID: 79668
http://www.securityfocus.com/bid/79668
http://www.openwall.com/lists/oss-security/2015/12/23/1
https://lists.gnu.org/archive/html/qemu-devel/2015-12/msg02930.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-8743
BugTraq ID: 79820
http://www.securityfocus.com/bid/79820
http://www.openwall.com/lists/oss-security/2016/01/04/1
http://www.openwall.com/lists/oss-security/2016/01/04/2
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg00050.html
http://www.securitytracker.com/id/1034574
Common Vulnerability Exposure (CVE) ID: CVE-2015-8744
BugTraq ID: 79821
http://www.securityfocus.com/bid/79821
http://www.openwall.com/lists/oss-security/2016/01/04/3
http://www.openwall.com/lists/oss-security/2016/01/04/6
http://www.securitytracker.com/id/1034576
Common Vulnerability Exposure (CVE) ID: CVE-2015-8745
BugTraq ID: 79822
http://www.securityfocus.com/bid/79822
http://www.openwall.com/lists/oss-security/2016/01/04/4
http://www.openwall.com/lists/oss-security/2016/01/04/7
http://www.securitytracker.com/id/1034575
Common Vulnerability Exposure (CVE) ID: CVE-2015-8817
http://www.openwall.com/lists/oss-security/2016/03/01/1
http://www.openwall.com/lists/oss-security/2016/03/01/10
https://lists.gnu.org/archive/html/qemu-stable/2016-01/msg00060.html
RedHat Security Advisories: RHSA-2016:2670
http://rhn.redhat.com/errata/RHSA-2016-2670.html
RedHat Security Advisories: RHSA-2016:2671
http://rhn.redhat.com/errata/RHSA-2016-2671.html
RedHat Security Advisories: RHSA-2016:2704
http://rhn.redhat.com/errata/RHSA-2016-2704.html
RedHat Security Advisories: RHSA-2016:2705
http://rhn.redhat.com/errata/RHSA-2016-2705.html
RedHat Security Advisories: RHSA-2016:2706
http://rhn.redhat.com/errata/RHSA-2016-2706.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-8818
Common Vulnerability Exposure (CVE) ID: CVE-2016-1568
BugTraq ID: 80191
http://www.securityfocus.com/bid/80191
http://www.openwall.com/lists/oss-security/2016/01/09/1
http://www.openwall.com/lists/oss-security/2016/01/09/2
RedHat Security Advisories: RHSA-2016:0084
http://rhn.redhat.com/errata/RHSA-2016-0084.html
RedHat Security Advisories: RHSA-2016:0086
http://rhn.redhat.com/errata/RHSA-2016-0086.html
RedHat Security Advisories: RHSA-2016:0087
http://rhn.redhat.com/errata/RHSA-2016-0087.html
RedHat Security Advisories: RHSA-2016:0088
http://rhn.redhat.com/errata/RHSA-2016-0088.html
http://www.securitytracker.com/id/1034859
Common Vulnerability Exposure (CVE) ID: CVE-2016-1570
http://www.securitytracker.com/id/1034744
Common Vulnerability Exposure (CVE) ID: CVE-2016-1571
http://www.securitytracker.com/id/1034745
Common Vulnerability Exposure (CVE) ID: CVE-2016-1714
BugTraq ID: 80250
http://www.securityfocus.com/bid/80250
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg00428.html
http://www.openwall.com/lists/oss-security/2016/01/11/7
http://www.openwall.com/lists/oss-security/2016/01/12/10
http://www.openwall.com/lists/oss-security/2016/01/12/11
RedHat Security Advisories: RHSA-2016:0081
http://rhn.redhat.com/errata/RHSA-2016-0081.html
RedHat Security Advisories: RHSA-2016:0082
http://rhn.redhat.com/errata/RHSA-2016-0082.html
RedHat Security Advisories: RHSA-2016:0083
http://rhn.redhat.com/errata/RHSA-2016-0083.html
RedHat Security Advisories: RHSA-2016:0085
http://rhn.redhat.com/errata/RHSA-2016-0085.html
http://www.securitytracker.com/id/1034858
Common Vulnerability Exposure (CVE) ID: CVE-2016-1922
BugTraq ID: 81058
http://www.securityfocus.com/bid/81058
http://www.openwall.com/lists/oss-security/2016/01/16/1
http://www.openwall.com/lists/oss-security/2016/01/16/6
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg02812.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-1981
BugTraq ID: 81549
http://www.securityfocus.com/bid/81549
http://www.openwall.com/lists/oss-security/2016/01/19/10
http://www.openwall.com/lists/oss-security/2016/01/22/1
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg03454.html
RedHat Security Advisories: RHSA-2016:2585
http://rhn.redhat.com/errata/RHSA-2016-2585.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-2198
https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html
http://www.openwall.com/lists/oss-security/2016/01/29/6
http://www.openwall.com/lists/oss-security/2016/01/30/2
https://lists.gnu.org/archive/html/qemu-devel/2016-01/msg05899.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-2270
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177990.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178518.html
http://www.securitytracker.com/id/1035042
Common Vulnerability Exposure (CVE) ID: CVE-2016-2271
http://www.securitytracker.com/id/1035043
Common Vulnerability Exposure (CVE) ID: CVE-2016-2391
BugTraq ID: 83263
http://www.securityfocus.com/bid/83263
https://lists.debian.org/debian-lts-announce/2018/11/msg00038.html
http://www.openwall.com/lists/oss-security/2016/02/16/2
https://lists.gnu.org/archive/html/qemu-devel/2016-02/msg03374.html
http://www.ubuntu.com/usn/USN-2974-1
Common Vulnerability Exposure (CVE) ID: CVE-2016-2392
BugTraq ID: 83274
http://www.securityfocus.com/bid/83274
http://www.openwall.com/lists/oss-security/2016/02/16/7
https://lists.gnu.org/archive/html/qemu-devel/2016-02/msg02553.html
http://lists.nongnu.org/archive/html/qemu-stable/2016-03/msg00064.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-2538
BugTraq ID: 83336
http://www.securityfocus.com/bid/83336
http://www.openwall.com/lists/oss-security/2016/02/22/3
https://lists.gnu.org/archive/html/qemu-devel/2016-02/msg03658.html
CopyrightCopyright (C) 2016 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.



© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.