 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.1.1.2.2016.699 |
| Category: | Debian Local Security Checks |
| Title: | Debian: Security Advisory (DLA-699-1) |
| Summary: | The remote host is missing an update for the Debian 'xen' package(s) announced via the DLA-699-1 advisory. |
| Description: | Summary: The remote host is missing an update for the Debian 'xen' package(s) announced via the DLA-699-1 advisory. Vulnerability Insight: Xen does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it. For Debian 7 Wheezy, these problems have been fixed in version 4.1.6.lts1-3. We recommend that you upgrade your xen packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: [link moved to references] Affected Software/OS: 'xen' package(s) on Debian 7. Solution: Please install the updated package(s). CVSS Score: 3.3 CVSS Vector: AV:L/AC:M/Au:N/C:P/I:P/A:N |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2016-7777 BugTraq ID: 93344 http://www.securityfocus.com/bid/93344 https://security.gentoo.org/glsa/201611-09 http://www.securitytracker.com/id/1036942 |
| Copyright | Copyright (C) 2023 Greenbone AG |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |