CVE-2020-2025

CVE-2020-2025 affects Kata Containers before 1.11.0 on Cloud Hypervisor. The issue lets a malicious guest persist or overwrite the underlying image file, potentially gaining control of subsequent VMs. Because Kata uses a shared VM image across VMMs, this may also impact QEMU and Firecracker based...

RHEL 8 : kernel-rt (RHSA-2020:2171)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2171 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

SUSE SLES12 Security Update : kernel (SUSE-SU-2020:1255-1)

The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2020-11494: An issue was discovered in slcbump in drivers/net/can/slcan.c, which allowed attackers to read uninitialized canframe data, potentially containing...

Fedora: Security Advisory for xen (FEDORA-2020-cbc3149753)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Kernel: kvm: nVMX: L2 guest may trick the L0 hypervisor to access sensitive L1 resources

A flaw was found in the way KVM hypervisor handled instruction emulation for the L2 guest when nested=1 virtualization is enabled. In the instruction emulation, the L2 guest could trick the L0 hypervisor into accessing sensitive bits of the L1 hypervisor. An L2 guest could use this flaw to...

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time...

Information Disclosure

kernel is vulnerable to information disclosure. An L2 guest may trick the L0 hypervisor to access confidential L1 resources...

Kernel: kvm: nVMX: L2 guest may trick the L0 hypervisor to access sensitive L1 resources

A flaw was found in the way KVM hypervisor handled instruction emulation for the L2 guest when nested=1 virtualization is enabled. In the instruction emulation, the L2 guest could trick the L0 hypervisor into accessing sensitive bits of the L1 hypervisor. An L2 guest could use this flaw to...

[SECURITY] Fedora 30 Update: xen-4.11.4-1.fc30

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 31 Update: xen-4.12.2-3.fc31

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Xen Bad Continuation Handling in GNTTABOP_copy DoS (XSA-318)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability in GNTTABOPcopy due to status fields of individual operations being left uninitialised. A buggy or malicious guest can construct its grant table in such ...

(Pwn2Own) Oracle VirtualBox E1000 IP Checksum Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

(Pwn2Own) Oracle VirtualBox OHCI Uninitialized Variable Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the...

F5 Networks BIG-IP : BIG-IP crypto driver vulnerability (K43815022)

The version of F5 Networks BIG-IP installed on the remote host is prior to 12.1.5.1 / 14.1.2.4 / 15.1.0. It is, therefore, affected by a vulnerability as referenced in the K43815022 advisory. Under certain conditions, the Intel QuickAssist Technology QAT cryptography driver may produce a Traffic...

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-1529)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for xen (FEDORA-2020-440457afe4)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

The vulnerability of the XENMEM_exchange component in Xen hypervisors allows a hacker to gain unauthorized access to confidential data, cause service failures, and compromise data integrity.

The vulnerability of the XENMEMexchange component in Xen hypervisors is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability allows an attacker to gain unauthorized access to confidential data, cause service failures, and...

The vulnerability of Xen hypervisors relates to the lack of a mechanism for verifying input data. This allows attackers to gain unauthorized access to confidential data, cause service failures, and compromise data integrity.

The vulnerability of Xen hypervisors is related to the lack of a mechanism for checking input data. Exploiting this vulnerability allows an attacker to gain unauthorized access to confidential data, cause service failures, and compromise data integrity...

The vulnerability of the physmap hardware virtualization concept in Xen hypervisors allows attackers to gain unauthorized access to confidential data, cause service failures, and compromise data integrity.

The vulnerability of the physmap hardware virtualization concept in Xen hypervisors is related to the lack of a mechanism for checking input data. Exploiting this vulnerability allows attackers to gain unauthorized access to confidential data, cause service failures, and compromise data integrity...

The vulnerability of Xen hypervisors relates to the lack of a mechanism for checking input data, allowing attackers to trigger a service failure.

The vulnerability of Xen hypervisors is related to the lack of a mechanism for checking input data. Exploiting this vulnerability allows an attacker to cause service failures...