EUVD-2008-0728

Malware in sbrugna...

EUVD-2009-0921

Malware in sbrugna...

EUVD-2014-8696

Malware in sbrugna...

CVE-2023-46842

Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in particular means that they may set registers used to pass 32-bit-mode hypercall arguments to values outside of the range 32-bit code would be able to set them to. When processing of hypercalls takes a...

CVE-2023-46842

CVE-2023-46842 affects the Xen hypervisor. The VULNERABILITY allows HVM guests to switch between 64-bit and other modes, enabling potential manipulation of registers used for 32-bit hypercall arguments. Translation of hypercall arguments and lax sanity checks on register high halves can trigger a...

CVE-2023-46842 x86 HVM hypercalls may trigger Xen bug check

Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in particular means that they may set registers used to pass 32-bit-mode hypercall arguments to values outside of the range 32-bit code would be able to set them to. When processing of hypercalls takes a...

CVE-2023-46842 x86 HVM hypercalls may trigger Xen bug check

Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in particular means that they may set registers used to pass 32-bit-mode hypercall arguments to values outside of the range 32-bit code would be able to set them to. When processing of hypercalls takes a...

x86 HVM hypercalls may trigger Xen bug check

ISSUE DESCRIPTION Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in particular means that they may set registers used to pass 32-bit-mode hypercall arguments to values outside of the range 32-bit code would be able to set them to. When processing of...

FreeBSD : xen-kernel -- VMX: guest user mode may crash guest with non-canonical RIP (81f9d6a4-ddaf-11e5-b2bd-002590263bf5)

The Xen Project reports : VMX refuses attempts to enter a guest with an instruction pointer which doesn't satisfy certain requirements. In particular, the instruction pointer needs to be canonical when entering a guest currently in 64-bit mode. This is the case even if the VM entry information...

CVE-2014-8866

The compatibility mode hypercall argument translation in Xen 3.3.x through 4.4.x, when running on a 64-bit hypervisor, allows local 32-bit HVM guests to cause a denial of service host crash via vectors involving altering the high halves of registers while in 64-bit mode...

Scientific Linux Security Update : kernel on SL4.x i386/x86_64

A flaw was found in the handling of process death signals. This allowed a local user to send arbitrary signals to the suid-process executed by that user. A successful exploitation of this flaw depends on the structure of the suid-program and its signal handling. CVE-2007-3848, Important - A flaw...

CVE-2009-2910

CVE-2009-2910 affects the Linux kernel’s ia32 entry path on x86_64. The issue is that arch/x86/ia32/ia32entry.S does not clear certain kernel registers before returning to user mode, which allows a local attacker to read register values from an earlier process after switching an ia32 process into...

NetBSD IRET通用保护错误处理本地权限提升漏洞

BUGTRAQ ID: 36430 CVECAN ID: CVE-2009-2793 NetBSD是一款免费开放源代码的UNIX性质的操作系统。 在Intel架构上，操作系统内核完成了对中断或异常的服务后通常会使用iret返回到用户态。iret指令会恢复执行继续所需的上下文，如代码段、指令指针、标记等。在受保护模式中iret会分为两个不同的阶段执行，分别为提交前阶段（pre-commit，权限级别改变之前）和提交后阶段（post- commit，权限级别改变后）。可在以下伪代码中找到提交点： IF new mode != 64-Bit Mode THEN IF tempEIP is no...

Sun Solaris lx Branded域本地拒绝服务漏洞

Bugraq ID: 36340 Sun Solaris是一款商业性质的操作系统。 Sun Solaris lx branded域存在安全未明安全问题，本地非特权用户可使运行在64位模式的Solaris x86 Intel系统崩溃。 Sun Solaris 10x86 Sun OpenSolaris build snv99 Sun OpenSolaris build snv98 Sun OpenSolaris build snv96 Sun OpenSolaris build snv95 Sun OpenSolaris build snv94 Sun OpenSolaris build...

Fedora 11 : kernel-2.6.29.5-191.fc11 (2009-6768)

Update to kernel 2.6.29.5: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.29.5 Includes DRM modesetting bug fixes. Adds driver for VIA SD/MMC controllers and full support for the Nano processor in 64-bit mode. Note that Tenable Network Security has extracted the preceding description...

CVE-2009-0924

Unspecified vulnerability in Sun OpenSolaris snv39 through snv45, when running in 64-bit mode on x86 architectures, allows local users to cause a denial of service hang of UFS filesystem write via unknown vectors related to the 1 ufsgetpage and 2 ufsputapage routines, aka CR 6442712...

Code injection

Unspecified vulnerability in the USB Mouse STREAMS module usbms in Sun Solaris 9 and 10, when 64-bit mode is enabled, allows local users to cause a denial of service panic via unspecified vectors...

CVE-2008-0718

The CVE-2008-0718 entry concerns Sun Solaris 9/10 where the USB Mouse STREAMS module (usbms) is vulnerable when 64-bit mode is enabled. The vulnerability allows local users to cause a denial of service (panic) via unspecified vectors. The NVD notes a CVSS v2 base score of 4.7 (Medium) with local ...

kernel security update

CentOS Errata and Security Advisory CESA-2007:0939 Updated kernel packages that fix various security issues in the Red Hat Enterprise Linux 4 kernel are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel is the cor...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix various security issues in the Red Hat Enterprise Linux 4 kernel are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel is the core of the operating system. These updated kernel...