Lucene search
K

153 matches found

OSV
OSV
added 2020/01/31 8:15 p.m.5 views

AZL-34852 CVE-2019-3016 affecting package kernel for versions less than 6.6.29.1-4

In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD...

4.7CVSS6.6AI score0.00619EPSS
Exploits0References1
OSV
OSV
added 2020/01/29 1:42 p.m.39 views

RLSA-2020:0279 Moderate: virt:rhel security update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting wi...

6.5CVSS7AI score0.03133EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/11/05 9:6 p.m.63 views

Low: Red Hat Security Advisory: virt:rhel security, bug fix, and enhancement update

An update for the virt:rhel module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS6.8AI score0.05546EPSS
Exploits1References63
RedHat Linux
RedHat Linux
added 2019/09/24 1:40 p.m.129 views

Important: Red Hat Security Advisory: qemu-kvm security update

An update for qemu-kvm is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.2CVSS6.9AI score0.05546EPSS
Exploits3References6
RedHat Linux
RedHat Linux
added 2019/08/22 9:19 a.m.158 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security, bug fix, and enhancement update

An update for qemu-kvm-rhev is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7 and Red Hat Virtualization Engine 4.3. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which giv...

9.8CVSS7.1AI score0.06169EPSS
Exploits1References60
RedHat Linux
RedHat Linux
added 2019/08/15 4:3 p.m.66 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security update

An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.1AI score0.04428EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/05/14 8:45 p.m.101 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security update

An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 14.0 Rocky. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.9CVSS7AI score0.01553EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2019/05/14 7:53 p.m.51 views

Important: Red Hat Security Advisory: qemu-kvm security update

An update for qemu-kvm is now available for Red Hat Enterprise Linux 6.6 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

5.9CVSS7AI score0.01553EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2018/10/09 11:4 a.m.87 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security update

An update for qemu-kvm-rhev is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.2CVSS6.9AI score0.00823EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2018/09/25 7:14 p.m.143 views

Important: Red Hat Security Advisory: qemu-kvm-ma security update

An update for qemu-kvm-ma is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

8.2CVSS7AI score0.00823EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2018/08/14 6:31 p.m.8 views

kernel: kvm: vmx: host GDT limit corruption

A flaw was found in Linux kernel's KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host's userspace code has an ability to place malicious entries in the GDT, particularly to the per-cp...

7.8CVSS7.3AI score0.0052EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/08/07 2:21 p.m.92 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security update

An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

5.5CVSS7.2AI score0.60631EPSS
Exploits2References2
UbuntuCve
UbuntuCve
added 2018/07/26 5:29 p.m.23 views

CVE-2018-10901

A flaw was found in Linux kernel's KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host's userspace code has an ability to place malicious entries in the GDT, particularly to the per-cp...

7.8CVSS7.1AI score0.0052EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2018/07/26 5:0 p.m.33 views

CVE-2018-10901

A flaw was found in Linux kernel's KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host's userspace code has an ability to place malicious entries in the GDT, particularly to the per-cp...

7.8CVSS7.7AI score0.0052EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2018/07/19 1:53 p.m.107 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security update

An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 13. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

5.5CVSS7.2AI score0.60631EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2018/06/27 8:25 a.m.107 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security and bug fix update

An update for qemu-kvm-rhev is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

5.5CVSS7.2AI score0.60631EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2018/05/22 1:41 a.m.87 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security update

An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS7.2AI score0.60631EPSS
Exploits2References3
Amazon
Amazon
added 2018/04/19 12:0 a.m.40 views

Important: kernel

Issue Overview: Race condition in the storeintwithrestart function in cpu/mcheck/mce.c: A race condition in the storeintwithrestart function in arch/x86/kernel/cpu/mcheck/mce.c in the Linux kernel allows local users to cause a denial of service panic by leveraging root access to write to the...

7.8CVSS7AI score0.0052EPSS
Exploits0
Amazon
Amazon
added 2018/02/20 12:0 a.m.56 views

Important: kernel

Issue Overview: Kernel address information leak in drivers/acpi/sbshc.c:acpismbushcadd function potentially allowing KASLR bypass The acpismbushcadd function in drivers/acpi/sbshc.c in the Linux kernel, through 4.14.15, allows local users to obtain sensitive address information by reading dmesg...

7.8CVSS7AI score0.93838EPSS
Exploits98
Tenable Nessus
Tenable Nessus
added 2018/01/19 12:0 a.m.138 views

Amazon Linux AMI : kernel (ALAS-2018-944)

Race condition in rawsendmsg function allows denial-of-service or kernel addresses leak A flaw was found in the Linux kernel's implementation of rawsendmsg allowing a local attacker to panic the kernel or possibly leak kernel addresses. A local attacker, with the privilege of creating raw sockets...

7.8CVSS6.4AI score0.01344EPSS
Exploits5References6
Rows per page
Query Builder