Debian DSA-2501-1 : xen - several vulnerabilities

NASLDB: Debian DSA-2501-1 : xen - several vulnerabilities

General

ID: 59779
Name: Debian DSA-2501-1 : xen – several vulnerabilities

Summary: Checks dpkg output for the updated package

Credits: –

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: –

Port: 0
Family: Debian Local Security Checks
Type: Local

Description

Several vulnerabilities were discovered in Xen, a hypervisor.

– CVE-2012-0217
Xen does not properly handle uncanonical return
addresses on Intel amd64 CPUs, allowing amd64 PV guests
to elevate to hypervisor privileges. AMD processors, HVM
and i386 guests are not affected.

– CVE-2012-0218
Xen does not properly handle SYSCALL and SYSENTER
instructions in PV guests, allowing unprivileged users
inside a guest system to crash the guest system.

– CVE-2012-2934
Xen does not detect old AMD CPUs affected by AMD Erratum
#121.

For CVE-2012-2934, Xen refuses to start domUs on affected systems
unless the ‘allow_unsafe’ option is passed.

Exploiting

Exploit Available: True
Exploitability Ease: Exploits are available

Sources

CVE: CVE-2012-0217
OSVDB: –
Bugtraq: –
scipID: –

Timeline

Vulnerability Disclosure: –
Patch Release: 2012/06/24
Plugin Release: 2012/06/29

Plugin

Version: 1.2
Filename: debian_DSA-2501.nasl
Filesize: 3890 bytes
MD5 Hash: cc24ee1887ccba69e63a8c0726746982

Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l
Dependencies: "ssh_get_info.nasl"

Latest Plugins

Latest Plugins

scip AG