5618 matches found
Design/Logic Flaw
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.5.1 49187. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists withi...
CVE-2021-34987
This CVE (CVE-2021-34987) concerns Parallels Desktop 16.5.1 (49187) where the HDAudio virtual device contains a buffer overflow due to improper validation of user-supplied data length before copying to a fixed-length buffer. The vulnerability enables local privilege escalation and arbitrary code ...
[SECURITY] [DSA 5184-1] xen security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5184-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 15, 2022 https://www.debian.org/security/faq -...
USN-5518-1: Linux kernel vulnerabilities
It was discovered that the eBPF implementation in the Linux kernel did not properly prevent writes to kernel objects in BPFBTFLOAD commands. A privileged local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-0500 It was discovered tha...
Fedora: Security Advisory for xen (FEDORA-2022-c4ec706488)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
USN-5514-1: Linux kernel vulnerabilities
It was discovered that the implementation of the 6pack and mkiss protocols in the Linux kernel did not handle detach events properly in some situations, leading to a use-after-free vulnerability. A local attacker could possibly use this to cause a denial of service system crash. CVE-2022-1195...
USN-5514-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-azure-fde, linux-gcp, linux-gke, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities
It was discovered that the implementation of the 6pack and mkiss protocols in the Linux kernel did not handle detach events properly in some situations, leading to a use-after-free vulnerability. A local attacker could possibly use this to cause a denial of service system crash. CVE-2022-1195...
[SECURITY] Fedora 36 Update: xen-4.16.1-5.fc36
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...
Vulnerabilities fixed in Citrix Hypervisor
Vulnerabilities have been fixed in Citrix Hypervisor and Citrix XenServer. The vulnerabilities potentially enable a malicious party to able to derive memory content from another virtual machine. These vulnerabilities are only present when the vulnerable products are used on AMD Zen 1 or AMD Zen 2...
Citrix Hypervisor Security Bulletin for CVE-2022-23825 and CVE-2022-29900
AMD has disclosed an issue that affects AMD CPU hardware and may allow code inside a guest VM to infer the contents of RAM memory elsewhere on the host. Although this is not an issue in the Citrix Hypervisor product itself, Citrix is releasing hotfixes that include product changes to mitigate thi...
Citrix Releases Security Updates for Hypervisor
Citrix has released security updates to address vulnerabilities in Hypervisor. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Citrix Security Updates CTX461397 and apply the necessary updates. This product ...
The vulnerability of the cross-platform hypervisor Xen in the Linux operating system allows a hacker to execute arbitrary code.
The vulnerability of the cross-platform hypervisor Xen kernel in the Linux operating system is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the cross-platform hypervisor Xen in the Linux operating system allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the cross-platform hypervisor Xen in the Linux operating system is related to the disclosure of information. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...
The vulnerability of the cross-platform hypervisor Xen in Linux operating systems allows a perpetrator to gain unauthorized access to protected information or cause service failures.
The vulnerability of the cross-platform hypervisor Xen in the Linux operating system is related to the disclosure of information. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information or cause service failures...
The vulnerability of the cross-platform hypervisor Xen in the Linux operating system allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the cross-platform hypervisor Xen in the Linux operating system is related to the disclosure of information. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...
(0Day) xhyve e1000 Stack-based Buffer Overflow Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of xhyve. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the e1000 virtual devic...
PT-2022-22978 · Xhyve · Xhyve
Name of the Vulnerable Software and Affected Versions: xhyve affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations. An attacker must first obtain the ability to execute high-privileged code on the target guest system in ord...
The vulnerability of Xen hypervisors relates to the execution of operations beyond the buffer in memory, allowing an attacker to execute arbitrary code.
The vulnerability of Xen hypervisors relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of Xen hypervisors relates to the execution of operations beyond the buffer in memory, allowing an attacker to execute arbitrary code.
The vulnerability of Xen hypervisors relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of Xen hypervisors arises from synchronization errors when using shared resources, allowing a perpetrator to execute arbitrary code.
The vulnerability of Xen hypervisors is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to execute arbitrary code...