Anfälligkeitssuche        Suche in 211766 CVE Beschreibungen
und 97459 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.1.4.2019.14199.1
Kategorie:SuSE Local Security Checks
Titel:SUSE: Security Advisory (SUSE-SU-2019:14199-1)
Zusammenfassung:The remote host is missing an update for the 'xen' package(s) announced via the SUSE-SU-2019:14199-1 advisory.
Beschreibung:Summary:
The remote host is missing an update for the 'xen' package(s) announced via the SUSE-SU-2019:14199-1 advisory.

Vulnerability Insight:
This update for xen fixes the following issues:
CVE-2019-15890: Fixed a use-after-free in SLiRP networking
implementation of QEMU emulator which could have led to Denial of
Service (bsc#1149813).

CVE-2019-12068: Fixed an issue in lsi which could lead to an infinite
loop and denial of service (bsc#1146874).

CVE-2019-14378: Fixed a heap buffer overflow in SLiRp networking
implementation of QEMU emulator which could have led to execution of
arbitrary code with privileges of the QEMU process (bsc#1143797).

CVE-2019-12067: Fixed a null pointer dereference which could have led to
denial of service (bsc#1145652).

CVE-2019-12155: Fixed a null pointer dereference in QXL VGA card
emulator of QEMU which could have led to denial of service (bsc#1135905).

Affected Software/OS:
'xen' package(s) on SUSE Linux Enterprise Server 11-SP4, SUSE Linux Enterprise Debuginfo 11-SP4

Solution:
Please install the updated package(s).

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2019-12067
Common Vulnerability Exposure (CVE) ID: CVE-2019-12068
Common Vulnerability Exposure (CVE) ID: CVE-2019-12155
Common Vulnerability Exposure (CVE) ID: CVE-2019-14378
Common Vulnerability Exposure (CVE) ID: CVE-2019-15890
Common Vulnerability Exposure (CVE) ID: CVE-2019-17340
Common Vulnerability Exposure (CVE) ID: CVE-2019-17341
Common Vulnerability Exposure (CVE) ID: CVE-2019-17342
Common Vulnerability Exposure (CVE) ID: CVE-2019-17343
Common Vulnerability Exposure (CVE) ID: CVE-2019-17344
Common Vulnerability Exposure (CVE) ID: CVE-2019-17346
Common Vulnerability Exposure (CVE) ID: CVE-2019-17347
Common Vulnerability Exposure (CVE) ID: CVE-2019-17348
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

Dies ist nur einer von 97459 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2021 E-Soft Inc. Alle Rechte vorbehalten.