|
|
Subscribe / Log in / New account

xen: information leak

Package(s):xen CVE #(s):CVE-2015-3340
Created:May 4, 2015 Updated:May 6, 2015
Description: From the CVE entry:

Xen 4.2.x through 4.5.x does not initialize certain fields, which allows certain remote service domains to obtain sensitive information from memory via a (1) XEN_DOMCTL_gettscinfo or (2) XEN_SYSCTL_getdomaininfolist request.

Alerts:
Gentoo 201604-03 xen 2016-04-05
Mageia MGASA-2016-0098 xen 2016-03-07
Debian DSA-3414-1 xen 2015-12-09
openSUSE openSUSE-SU-2015:1092-1 xen 2015-06-22
openSUSE openSUSE-SU-2015:0983-1 xen 2015-06-02
Fedora FEDORA-2015-6583 xen 2015-05-02
Fedora FEDORA-2015-6670 xen 2015-05-02
SUSE SUSE-SU-2015:0927-1 Xen 2015-05-22
SUSE SUSE-SU-2015:0940-1 Xen 2015-05-26
SUSE SUSE-SU-2015:0944-1 Xen 2015-05-26
SUSE SUSE-SU-2015:0923-1 xen 2015-05-21
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds