FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-16 06:42:40 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
a73aba9a-effe-11e6-ae1b-002590263bf5	xen-tools -- oob access in cirrus bitblt copy The Xen Project reports: When doing bitblt copy backwards, qemu should negate the blit width. This avoids an oob access before the start of video memory. A malicious guest administrator can cause an out of bounds memory access, possibly leading to information disclosure or privilege escalation. Discovery 2017-02-10 Entry 2017-02-11 xen-tools < 4.7.1_2 CVE-2017-2615 http://xenbits.xen.org/xsa/advisory-208.html

VuXML ID

Description

a73aba9a-effe-11e6-ae1b-002590263bf5

xen-tools -- oob access in cirrus bitblt copy

The Xen Project reports:

When doing bitblt copy backwards, qemu should negate the blit width. This avoids an oob access before the start of video memory.

A malicious guest administrator can cause an out of bounds memory access, possibly leading to information disclosure or privilege escalation.

Discovery 2017-02-10
Entry 2017-02-11
xen-tools

< 4.7.1_2

CVE-2017-2615
http://xenbits.xen.org/xsa/advisory-208.html