Detections
Analytics
Debian DSA-2337-1 : xen - several vulnerabilities
high Nessus Plugin ID 56716
Language:
Synopsis
The remote Debian host is missing a security-related update.Description
Several vulnerabilities were discovered in the Xen virtual machine hypervisor.- CVE-2011-1166 A 64-bit guest can get one of its vCPUs into non-kernel mode without first providing a valid non-kernel pagetable, thereby locking up the host system.
- CVE-2011-1583, CVE-2011-3262 Local users can cause a denial of service and possibly execute arbitrary code via a crafted paravirtualised guest kernel image.
- CVE-2011-1898 When using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, guest OS users can gain host OS privileges by writing to the interrupt injection registers.
The oldstable distribution (lenny) contains a different version of Xen not affected by these problems.
Solution
Upgrade the xen packages.For the stable distribution (squeeze), this problem has been fixed in version 4.0.1-4.
See Also
https://security-tracker.debian.org/tracker/CVE-2011-1166
https://security-tracker.debian.org/tracker/CVE-2011-1583
https://security-tracker.debian.org/tracker/CVE-2011-3262
https://security-tracker.debian.org/tracker/CVE-2011-1898
Plugin Details
Severity: High
ID: 56716
File Name: debian_DSA-2337.nasl
Version: 1.14
Type: local
Agent: unix
Family: Debian Local Security Checks
Published: 11/7/2011
Updated: 1/11/2021
Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.8
CVSS v2
Risk Factor: High
Base Score: 7.4
Temporal Score: 5.5
Vector: CVSS2#AV:A/AC:M/Au:S/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:debian:debian_linux:xen, cpe:/o:debian:debian_linux:6.0
Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l
Exploit Ease: No known exploits are available
Patch Publication Date: 11/6/2011
Reference Information
CVE: CVE-2011-1166, CVE-2011-1583, CVE-2011-1898, CVE-2011-3262
DSA: 2337