Test Kennung:	1.3.6.1.4.1.25623.1.0.140576
Kategorie:	Citrix Xenserver Local Security Checks
Titel:	Citrix XenServer Multiple Security Updates (CTX230138)
Zusammenfassung:	A number of security vulnerabilities have been identified in Citrix; XenServer that may allow a malicious administrator of an HVM guest VM to compromise the host.
Beschreibung:	Summary: A number of security vulnerabilities have been identified in Citrix XenServer that may allow a malicious administrator of an HVM guest VM to compromise the host. Vulnerability Insight: The following vulnerabilities have been addressed: - CVE-2017-7980: code execution via overflow in Cirrus Logic emulation - CVE-2017-15592: Incorrect handling of self-linear shadow mappings with translated guests - CVE-2017-17044: Infinite loop due to missing PoD error checking - CVE-2017-17045: Missing p2m error checking in PoD code Affected Software/OS: XenServer versions 7.2, 7.1, 7.0, 6.5, 6.2.0 and 6.0.2. Solution: Apply the hotfix referenced in the advisory. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7980 BugTraq ID: 102129 http://www.securityfocus.com/bid/102129 BugTraq ID: 97955 http://www.securityfocus.com/bid/97955 https://security.gentoo.org/glsa/201706-03 https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html http://www.openwall.com/lists/oss-security/2017/04/21/1 RedHat Security Advisories: RHSA-2017:0980 https://access.redhat.com/errata/RHSA-2017:0980 RedHat Security Advisories: RHSA-2017:0981 https://access.redhat.com/errata/RHSA-2017:0981 RedHat Security Advisories: RHSA-2017:0982 https://access.redhat.com/errata/RHSA-2017:0982 RedHat Security Advisories: RHSA-2017:0983 https://access.redhat.com/errata/RHSA-2017:0983 RedHat Security Advisories: RHSA-2017:0984 https://access.redhat.com/errata/RHSA-2017:0984 RedHat Security Advisories: RHSA-2017:0988 https://access.redhat.com/errata/RHSA-2017:0988 RedHat Security Advisories: RHSA-2017:1205 https://access.redhat.com/errata/RHSA-2017:1205 RedHat Security Advisories: RHSA-2017:1206 https://access.redhat.com/errata/RHSA-2017:1206 RedHat Security Advisories: RHSA-2017:1430 https://access.redhat.com/errata/RHSA-2017:1430 RedHat Security Advisories: RHSA-2017:1441 https://access.redhat.com/errata/RHSA-2017:1441 http://ubuntu.com/usn/usn-3289-1 Common Vulnerability Exposure (CVE) ID: CVE-2017-15592 BugTraq ID: 101513 http://www.securityfocus.com/bid/101513 Debian Security Information: DSA-4050 (Google Search) https://www.debian.org/security/2017/dsa-4050 https://security.gentoo.org/glsa/201801-14 https://lists.debian.org/debian-lts-announce/2017/11/msg00027.html https://lists.debian.org/debian-lts-announce/2018/10/msg00021.html http://www.securitytracker.com/id/1039568 Common Vulnerability Exposure (CVE) ID: CVE-2017-17044 BugTraq ID: 102008 http://www.securityfocus.com/bid/102008 BugTraq ID: 105954 http://www.securityfocus.com/bid/105954 https://lists.debian.org/debian-lts-announce/2018/01/msg00003.html http://www.securitytracker.com/id/1039878 Common Vulnerability Exposure (CVE) ID: CVE-2017-17045 BugTraq ID: 102013 http://www.securityfocus.com/bid/102013 http://www.securitytracker.com/id/1039879
Copyright	Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.