| Max CVSS | 7.2 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-12135 | 4.6 |
Xen allows local OS guest users to cause a denial of service (crash) or possibly obtain sensitive information or gain privileges via vectors involving transitive grants.
|
14-04-2020 - 15:15 | 24-08-2017 - 14:29 | |
| CVE-2017-12134 | 7.2 |
The xen_biovec_phys_mergeable function in drivers/xen/biomerge.c in Xen might allow local OS guest users to corrupt block device data streams and consequently obtain sensitive memory information, cause a denial of service, or gain host OS privileges
|
03-10-2019 - 00:03 | 24-08-2017 - 14:29 | |
| CVE-2017-12137 | 7.2 |
arch/x86/mm.c in Xen allows local PV guest OS users to gain host OS privileges via vectors related to map_grant_ref.
|
03-10-2019 - 00:03 | 24-08-2017 - 14:29 | |
| CVE-2017-12136 | 6.9 |
Race condition in the grant table code in Xen 4.6.x through 4.9.x allows local guest OS administrators to cause a denial of service (free list corruption and host crash) or gain privileges on the host via vectors involving maptrack free list handling
|
06-05-2019 - 12:46 | 24-08-2017 - 14:29 | |
| CVE-2017-12855 | 2.1 |
Xen maintains the _GTF_{read,writ}ing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify the grant details while it is in use, whereas the guest is free to modify/reuse the grant entry when it is not in
|
15-11-2017 - 02:29 | 15-08-2017 - 16:29 |