OracleVM 3.4 : xen (OVMSA-2021-0033)

The remote OracleVM system is missing necessary patches to address security updates: - IOMMU page mapping issues on x86 This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Both AMD and Intel allow ACPI tables to specify...

Driver Disk for Qlogic fastlinq 8.55.13.0 - For Citrix Hypervisor 8.2 LTSR

Who Should Install this Driver Disk? Customers running the Citrix Hypervisor 8.2 LTSR release who use Qlogic's fastlinq driver and wish to use the latest version of the following: Driver Module| Version ---|--- qed| 8.55.13.0 qede| 8.55.13.0 qedf| 8.55.13.0 qedi| 8.55.13.0 qedr| 8.55.13.0 Issues...

VMware ESXi Servers Encrypted by Lightning-Fast Python Script

Researchers have discovered a new Python ransomware from an unnamed gang that’s striking ESXi servers and virtual machines VMs with what they called “sniper-like” speed. Sophos said on Tuesday that the ransomware is being used to compromise and encrypt VMs hosted on an ESXi hypervisor in operatio...

CVE-2021-38923

IBM PowerVM Hypervisor FW1010 could allow a privileged user to gain access to another VM due to assigning duplicate WWPNs. IBM X-Force ID: 210162...

Code injection

IBM PowerVM Hypervisor FW1010 could allow a privileged user to gain access to another VM due to assigning duplicate WWPNs. IBM X-Force ID: 210162...

CVE-2021-38923

CVE-2021-38923 affects IBM PowerVM Hypervisor FW1010. The vulnerability arises from assigning duplicate WWPNs to virtual fiber channel adapters in peer VMs, which could allow a privileged user to gain access to another VM. Affected product: PowerVM Hypervisor FW1010 (Power 10 lineage). The IBM Se...

CVE-2021-38923

IBM PowerVM Hypervisor FW1010 could allow a privileged user to gain access to another VM due to assigning duplicate WWPNs. IBM X-Force ID: 210162...

Security Bulletin: The PowerVM hypervisor can assign duplicate WWPN's to virtual fiber channel adapters in peer VMs

Summary In some cases the PowerVM hypervisor can assign duplicate WWPN's to virtual fiber channel adapters in peer VMs after a specific series of service actions are performed Vulnerability Details CVEID: CVE-2021-38923 DESCRIPTION: IBM PowerVM Hypervisor could allow a privileged user to gain...

Windows 11 is out. Is it any good for security?

Windows 11, the latest operating system OS from Microsoft, launches today, and organizations have begun asking themselves when and if they should upgrade from Windows 10 or older versions. The requirements and considerations of each organization will be different, and many things will inform the...

Workload Balancing virtual appliance 8.2.2 - For Citrix Hypervisor 8.2

Who Should Install This Update? This Workload Balancing virtual appliance update is for customers who use the Workload Balancing feature of Citrix Hypervisor 8.2. It constitutes the following deliverable: File Name| CitrixHypervisor-8.2.2-wlb.xva ---|--- Description| This file provides an updated...

Simplified Steps for Reverse Imaging PVS vDisk to Citrix Hypervisor VM

In order to accomplish some upgrades, you need to boot to the “hard drive” instead of the network. Some of the cases where booting to the hard drive are required: Uninstall PVS agent to upgrade Uninstall the Network Adapter to replace or upgrade Uninstall the Citrix Hypervisor tools to upgrade...

Fedora: Security Advisory for xen (FEDORA-2021-5a0c7bc619)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

USN-5094-2: Linux kernel (Raspberry Pi) vulnerabilities

It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute...

The vulnerability of the cross-platform hypervisor Xen kernel in the Linux operating system, related to uncontrolled resource consumption, allows a perpetrator to trigger a service failure for dom0 or domain drivers.

The vulnerability of the cross-platform hypervisor Xen in the Linux operating system is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow an attacker to cause a failure in the dom0 service or the domain driver...

Ubuntu: Security Advisory (USN-5094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Defend against zero-day exploits with Microsoft Defender Application Guard

Zero-day security vulnerabilities—known to hackers, but unknown to software creators, security researchers, and the public—are like gold to attackers. With zero-days, or even zero-hours, developers have no time to patch the code, giving hackers enough access and time to explore and map internal...

USN-5094-1: Linux kernel vulnerabilities

It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute...

Driver Disk for Qlogic qla2xxx 10.02.06.02-k - For Citrix Hypervisor 8.2 LTSR

Who Should Install this Driver Disk? Customers on non-Dell hardware running the Citrix Hypervisor 8.2 LTSR release who use Qlogic's qla2xxx driver and wish to use the latest version of the driver. Note: If you use Dell hardware, do not install this driver disk. This version of the driver disk is...

[SECURITY] Fedora 35 Update: xen-4.15.0-7.fc35

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 35 Update: xen-4.15.0-6.fc35

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...