Total vulnerabilities in the database
Xen 3.0.3 through 4.1.x (possibly 4.1.6.1), 4.2.x (possibly 4.2.3), and 4.3.x (possibly 4.3.1) does not properly prevent access to hypercalls, which allows local guest users to gain privileges via a crafted application running in ring 1 or 2.
| Software | From | Fixed in |
|---|---|---|
| xen / xen | 3.2.0 | 3.2.0.x |
| xen / xen | 4.1.5 | 4.1.5.x |
| xen / xen | 3.2.1 | 3.2.1.x |
| xen / xen | 3.0.4 | 3.0.4.x |
| xen / xen | 3.4.0 | 3.4.0.x |
| xen / xen | 4.0.4 | 4.0.4.x |
| xen / xen | 4.0.2 | 4.0.2.x |
| xen / xen | 3.3.2 | 3.3.2.x |
| xen / xen | 4.1.2 | 4.1.2.x |
| xen / xen | 3.2.2 | 3.2.2.x |
| xen / xen | 3.4.4 | 3.4.4.x |
| xen / xen | 4.0.0 | 4.0.0.x |
| xen / xen | 4.1.1 | 4.1.1.x |
| xen / xen | 4.1.0 | 4.1.0.x |
| xen / xen | 3.4.3 | 3.4.3.x |
| xen / xen | 3.0.3 | 3.0.3.x |
| xen / xen | 4.1.3 | 4.1.3.x |
| xen / xen | 3.2.3 | 3.2.3.x |
| xen / xen | 4.1.6.1 | 4.1.6.1.x |
| xen / xen | 3.3.1 | 3.3.1.x |
| xen / xen | 3.4.2 | 3.4.2.x |
| xen / xen | 4.1.4 | 4.1.4.x |
| xen / xen | 3.4.1 | 3.4.1.x |
| xen / xen | 3.1.4 | 3.1.4.x |
| xen / xen | 3.3.0 | 3.3.0.x |
| xen / xen | 3.1.3 | 3.1.3.x |
| xen / xen | 4.0.1 | 4.0.1.x |
| xen / xen | 4.0.3 | 4.0.3.x |
| xen / xen | 4.2.2 | 4.2.2.x |
| xen / xen | 4.2.3 | 4.2.3.x |
| xen / xen | 4.2.0 | 4.2.0.x |
| xen / xen | 4.2.1 | 4.2.1.x |
| xen / xen | 4.3.0 | 4.3.0.x |
| xen / xen | 4.3.1 | 4.3.1.x |