Количество 14
Количество 14
CVE-2017-14316
A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array.
CVE-2017-14316
A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array.
CVE-2017-14316
A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array.
CVE-2017-14316
A parameter verification issue was discovered in Xen through 4.9.x. Th ...
GHSA-9pmq-32g5-2h85
A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array.
BDU:2017-02296
Уязвимость функции alloc_heap_pages гипервизора Xen, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
SUSE-SU-2017:2611-1
Security update for xen
openSUSE-SU-2017:2540-1
Security update for xen
openSUSE-SU-2017:2514-1
Security update for xen
SUSE-SU-2017:2519-1
Security update for xen
SUSE-SU-2017:2466-1
Security update for xen
SUSE-SU-2017:2420-1
Security update for xen
SUSE-SU-2017:2541-1
Security update for xen
SUSE-SU-2017:2450-1
Security update for xen
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-14316 A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array. | CVSS3: 8.8 | 0% Низкий | больше 8 лет назад |
 | CVE-2017-14316 A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array. | CVSS3: 8.8 | 0% Низкий | больше 8 лет назад |
 | CVE-2017-14316 A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array. | CVSS3: 8.8 | 0% Низкий | больше 8 лет назад |
| CVE-2017-14316 A parameter verification issue was discovered in Xen through 4.9.x. Th ... | CVSS3: 8.8 | 0% Низкий | больше 8 лет назад |
| GHSA-9pmq-32g5-2h85 A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array. | CVSS3: 8.8 | 0% Низкий | больше 3 лет назад |
 | BDU:2017-02296 Уязвимость функции alloc_heap_pages гипервизора Xen, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании | CVSS3: 8.8 | 0% Низкий | больше 8 лет назад |
 | SUSE-SU-2017:2611-1 Security update for xen | больше 8 лет назад | ||
| openSUSE-SU-2017:2540-1 Security update for xen | больше 8 лет назад | ||
| openSUSE-SU-2017:2514-1 Security update for xen | больше 8 лет назад | ||
| SUSE-SU-2017:2519-1 Security update for xen | больше 8 лет назад | ||
| SUSE-SU-2017:2466-1 Security update for xen | больше 8 лет назад | ||
| SUSE-SU-2017:2420-1 Security update for xen | больше 8 лет назад | ||
| SUSE-SU-2017:2541-1 Security update for xen | больше 8 лет назад | ||
| SUSE-SU-2017:2450-1 Security update for xen | больше 8 лет назад |
Уязвимостей на страницу