Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002892)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002892 advisory. The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS...

AMD SEV-SNP 安全漏洞

AMD SEV-SNP is a secure encrypted virtualization firmware from UltraMicroelectronics AMD. A single key is used to encrypt system memory. AMD SEV-SNP suffers from a security vulnerability that stems from an improper restriction on write operations causing a malicious hypervisor to overwrite the...

virglrenderer 安全漏洞

virglrenderer is a VirGL virtual OpenGL renderer. A security vulnerability exists in virglrenderer, which allows an attacker on a guest system to read memory fragments of virgl via VIRTIOGPUCMDRESOURCEATTACHBACKING to obtain sensitive information on the host system...

CVE-2019-3016

In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD...

ALPINE-CVE-2016-9932

CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix...

DEBIAN-CVE-2016-5105

The megasasdcmdcfgread function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface MFI command...