4.13.2

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-27	CVE-2021-28699	inadequate grant-v2 status frames array bounds check The v2 grant table interface separates grant attributes from grant status. local low complexity xen fedoraproject debian	5.5
2021-08-27	CVE-2021-28700	Allocation of Resources Without Limits or Throttling vulnerability in multiple products xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. network low complexity xen fedoraproject debian CWE-770	4.9
2021-06-11	CVE-2021-28689	Improper Cross-boundary Removal of Sensitive Data vulnerability in XEN x86: Speculative vulnerabilities with bare (non-shim) 32-bit PV guests 32-bit x86 PV guest kernels run in ring 1. local low complexity xen CWE-212	5.5
2021-02-17	CVE-2021-26933	An issue was discovered in Xen 4.9 through 4.14.x. local low complexity xen fedoraproject debian	5.5
2021-01-26	CVE-2021-3308	An issue was discovered in Xen 4.12.3 through 4.12.4 and 4.13.1 through 4.14.x. local low complexity xen fedoraproject	5.5
2020-12-15	CVE-2020-29486	Allocation of Resources Without Limits or Throttling vulnerability in multiple products An issue was discovered in Xen through 4.14.x. local low complexity xen debian fedoraproject CWE-770	6.0
2020-12-15	CVE-2020-29485	Memory Leak vulnerability in multiple products An issue was discovered in Xen 4.6 through 4.14.x. local low complexity xen debian fedoraproject CWE-401	5.5
2020-12-15	CVE-2020-29484	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in Xen through 4.14.x. local low complexity xen debian fedoraproject CWE-476	6.0
2020-12-15	CVE-2020-29483	Use After Free vulnerability in multiple products An issue was discovered in Xen through 4.14.x. local low complexity xen debian fedoraproject CWE-416	6.5
2020-12-15	CVE-2020-29482	Untrusted Search Path vulnerability in multiple products An issue was discovered in Xen through 4.14.x. local low complexity xen debian fedoraproject CWE-426	6.0