Описание
An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users (in certain configurations) to read arbitrary dom0 files via QMP live insertion of a CDROM, in conjunction with specifying the target file as the backing file of a snapshot.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 4.8.3+xsa262+shim4.10.0+comet3-1+deb9u6 |
| cosmic | ignored | end of life |
| devel | not-affected | 4.8.3+xsa262+shim4.10.0+comet3-1+deb9u6 |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/focal | not-affected | 4.8.3+xsa262+shim4.10.0+comet3-1+deb9u6 |
| esm-apps/jammy | not-affected | 4.8.3+xsa262+shim4.10.0+comet3-1+deb9u6 |
| esm-apps/noble | not-affected | 4.8.3+xsa262+shim4.10.0+comet3-1+deb9u6 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needs-triage] |
Показывать по
1.9 Low
CVSS2
5.6 Medium
CVSS3
Связанные уязвимости
An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users (in certain configurations) to read arbitrary dom0 files via QMP live insertion of a CDROM, in conjunction with specifying the target file as the backing file of a snapshot.
An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users (in certain configurations) to read arbitrary dom0 files via QMP live insertion of a CDROM, in conjunction with specifying the target file as the backing file of a snapshot.
An issue was discovered in Xen through 4.10.x allowing x86 HVM guest O ...
An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users (in certain configurations) to read arbitrary dom0 files via QMP live insertion of a CDROM, in conjunction with specifying the target file as the backing file of a snapshot.
1.9 Low
CVSS2
5.6 Medium
CVSS3