Vulnerability & Exploit Database

Displaying entries 1 - 10 of 95 in total

Results for: CVE-2016-3044 Back to search

SUSE: CVE-2016-9637: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: December 07, 2016

The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access.

SUSE: CVE-2016-9386: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: December 07, 2016

The x86 emulator in Xen does not properly treat x86 NULL segments as unusable when accessing memory, which might allow local HVM guest users to gain privileges via vectors involving "unexpected" base/limit values.

SUSE: CVE-2016-9383: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: December 07, 2016

Xen, when running on a 64-bit hypervisor, allows local x86 guest OS users to modify arbitrary memory and consequently obtain sensitive information, cause a denial of service (host crash), or execute arbitrary code on the host by leveraging broken emulation of bit test instructions.

SUSE: CVE-2016-9382: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: December 07, 2016

Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode.

SUSE: CVE-2016-9381: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: December 07, 2016

Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to gain privileges by changing certain data on shared rings, aka a "double fetch" vulnerability.

SUSE: CVE-2016-9380: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: December 07, 2016

The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via NUL bytes in the bootloader configuration file.

SUSE: CVE-2016-9379: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: December 07, 2016

The pygrub boot loader emulator in Xen, when S-expression output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via string quotes and S-expressions in the bootloader configuration file.

SUSE: CVE-2016-8910: SUSE Linux Security Advisory Vulnerability

  • Severity: 2
  • Published: November 04, 2016

The rtl8139_cplus_transmit function in hw/net/rtl8139.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) by leveraging failure to limit the ring descriptor count.

SUSE: CVE-2016-8669: SUSE Linux Security Advisory Vulnerability

  • Severity: 2
  • Published: November 04, 2016

The serial_update_parameters function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving a value of divider greater than baud base.

SUSE: CVE-2016-8667: SUSE Linux Security Advisory Vulnerability

  • Severity: 2
  • Published: November 04, 2016

The rc4030_write function in hw/dma/rc4030.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via a large interval timer reload value.