CVE-2024-31145

Certain PCI devices in a system might be assigned Reserved Memory Regions specified via Reserved Memory Region Reporting, "RMRR" for Intel VT-d or Unity Mapping ranges for AMD-Vi. These are typically used for platform tasks such as legacy USB emulation. Since the precise purpose of these regions ...

CVE-2024-31146

When multiple devices share resources and one of them is to be passed through to a guest, security of the entire system and of respective guests individually cannot really be guaranteed without knowing internals of any of the involved guests. Therefore such a configuration cannot really be...

Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-7009-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7009-2 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to caus...

CVE-2024-45817

In x86's APIC Advanced Programmable Interrupt Controller architecture, error conditions are reported in a status register. Furthermore, the OS can opt to receive an interrupt when a new error occurs. It is possible to configure the error interrupt with an illegal vector, which generates an error...

The vulnerability of the hypervisor in FreeBSD operating systems allows a hacker to execute arbitrary code.

The vulnerability of the hypervisor in FreeBSD operating systems relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on a host using a virtual USB device connected to the XHCI interface...

XenServer and Citrix Hypervisor Security Update for CVE-2024-45817

XenServer and Citrix Hypervisor Security Update Description of Problem An issue has been identified that affects both XenServer 8 and Citrix Hypervisor 8.2 CU1 LTSR and allow a malicious administrator of a guest VM to cause the host to crash or become unresponsive. This issue has the following...

Hotfix XS82ECU1075 - For Citrix Hypervisor 8.2 Cumulative Update 1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2 Cumulative Update 1. Note: This hotfix is available only to customers on the Customer Success Services program. Where To Get This Hotfix Download Citrix Hypervisor 8.2 Cumulative Update 1 hotfixes from...

Hotfix XS82ECU1077 - For Citrix Hypervisor 8.2 Cumulative Update 1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2 Cumulative Update 1. All customers who are affected by the issues described inCTX691646 - Citrix Hypervisor Security Bulletinshould install this hotfix. Note: This hotfix is available only to customers on...

The vulnerability of the x86 IOMMU Identity Mapping component in the cross-platform hypervisor Xen allows a attacker to influence the confidentiality, integrity, and accessibility of the system.

The vulnerability of the x86 IOMMU Identity Mapping component in the cross-platform hypervisor Xen is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

PT-2024-6570 · Citrix +3 · Citrix Hypervisor 8.2 Cu1 +4

Name of the Vulnerable Software and Affected Versions: Xen affected versions not specified XenServer 8 Citrix Hypervisor 8.2 CU1 Description: The issue is related to the x86's APIC architecture, where error conditions are reported in a status register. The OS can opt to receive an interrupt when ...

The vulnerability of the PCI DeviceHandler component in the cross-platform hypervisor Xen allows a perpetrator to influence the confidentiality, integrity, and accessibility of the system.

The vulnerability of the cross-platform hypervisor component PCI DeviceHandler is related to errors in the program code. Exploiting this vulnerability allows a malicious actor to influence the confidentiality, integrity, and accessibility of the system...

Driver Disk for Intel i40e 2.25.11 - For Citrix Hypervisor 8.2 Cumulative Update 1 LTSR

Who should install this driver disk? Customers running the Citrix Hypervisor 8.2 Cumulative Update 1 LTSR release who use Intel's i40e driver and wish to use the latest version of the following: Driver Module| Driver Type| Version ---|---|--- i40e| Ethernet/NIC| 2.25.11 Issues resolved in this...

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-7007-3)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7007-3 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use...

Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-7007-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7007-2 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to caus...

Xen: Multiple Vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time...

FreeBSD : FreeBSD -- bhyve(8) out-of-bounds read access via XHCI emulation (1febd09b-7716-11ef-9a62-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 1febd09b-7716-11ef-9a62-002590c1f29c advisory. bhyve can be configured to emulate devices on a virtual USB controller XHCI, such as USB tablet devices...

USN-7019-1 linux-xilinx-zynqmp vulnerabilities

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. CVE-2022-38096 Gui-Dong Han discovered that the...

The vulnerability of the x86 HVM Hypercall Handler component of the cross-platform hypervisor Xen in the Linux operating system allows a attacker to trigger a service failure.

The vulnerability of the x86 HVM Hypercall Handler component in the cross-platform hypervisor Xen for Linux operating systems is related to the ability to freely switch between 64-bit and other system modes. Exploiting this vulnerability could allow an attacker to trigger a service failure...

The vulnerability of the DeviceHandler component of the cross-platform Xen hypervisor for Linux operating systems allows a perpetrator to escalate their privileges.

The vulnerability of the DeviceHandler component in the cross-platform hypervisor Xen of the Linux operating system is related to the incorrect placement of the preprocessor directive in the source code. Exploiting this vulnerability can allow an attacker to increase their privileges...

ROS-20240916-09

The vulnerability of the x86 HVM Hypercall Handler component of the Xen kernel's x86 HVM hypervisor is related to the ability to freely switch between 64-bit and other system modes. Linux kernel hypervisor is related to the ability to freely switch between 64-bit and other system modes...