SUSE CVE-2014-8867

The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking for memory mapped I/O MMIO emulated in the hypervisor, which allows local HVM guests to cause a denial of service host crash via unspecified vectors...

SUSE CVE-2016-2270

Xen 4.6.x and earlier allows local guest administrators to cause a denial of service host reboot via vectors related to multiple mappings of MMIO pages with different cachability settings...

SUSE CVE-2016-10741

In the Linux kernel before 4.9.3, fs/xfs/xfsaops.c allows local users to cause a denial of service system crash because there is a race condition between direct and memory-mapped I/O associated with a hole that is handled with BUGON instead of an I/O failure...

SUSE CVE-2017-10922

The grant-table feature in Xen through 4.8.x mishandles MMIO region grant references, which allows guest OS users to cause a denial of service loss of grant trackability, aka XSA-224 bug 3...

SUSE CVE-2020-12829

In QEMU through 5.0.0, an integer overflow was found in the SM501 display driver implementation. This flaw occurs in the COPYAREA macro while handling MMIO write operations through the sm5012denginewrite callback. A local attacker could abuse this flaw to crash the QEMU process in sm5012doperatio...

SUSE CVE-2020-13754

hw/pci/msix.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access via a crafted address in an msi-x mmio operation...

SUSE CVE-2022-2962

A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes to the rx/tx descriptor or copies the rx/tx frame, it doesn't check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers multiple times, possib...

kernel: tcp: fix page frag corruption on page fault

A vulnerability was found in the Linux kernel's TCP subsystem in the tcpsendmsglocked function, which can lead to page fragment corruption during a page fault, which occurs when a TCP stream experiences nested access to the task page fragment due to a page fault while handling memory-mapped...

kernel: igc: Reinstate IGC_REMOVED logic and implement it properly

In the Linux kernel, the following vulnerability has been resolved: igc: Reinstate IGCREMOVED logic and implement it properly The initially merged version of the igc driver code via commit 146740f9abc4, "igc: Add support for PF" contained the following IGCREMOVED checks in the igcrd32/wr32 MMIO...

Intel Processors MMIO Stale Data Advisory - Lenovo Support US

No description provided...

OESA-2022-1996 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. QEMU has two operating modes: Full system emulation. In this mode, QEMU emulates a full system for example a PC, including one or several processors and various peripherals. It can be used to launch...

AZL-35159 CVE-2022-2962 affecting package qemu for versions less than 6.2.0-18

A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes to the rx/tx descriptor or copies the rx/tx frame, it doesn't check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers multiple times, possib...

AZL-10975 CVE-2022-2962 affecting package qemu for versions less than 6.2.0-13

A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes to the rx/tx descriptor or copies the rx/tx frame, it doesn't check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers multiple times, possib...

QEMU 缓冲区错误漏洞

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. QEMU has a security vulnerability that stems from a DMA reentry problem found in its Tulip device emulation. When the Tulip reads or writes an...

The vulnerability of Intel’s MMIO input/output system, which allows a hacker to disclose protected information

The vulnerability of the MMIO input/output system of Intel processors is related to the disclosure of information. Exploiting this vulnerability can allow an intruder to disclose the protected information...

CVE-2022-21233

A flaw was found in hw. The APIC can operate in xAPIC mode also known as a legacy mode, in which APIC configuration registers are exposed through a memory-mapped I/O MMIO page. This flaw allows an attacker who can execute code on a target CPU to query the APIC configuration page. When reading the...

hw: cpu: Intel: Stale Data Read from legacy xAPIC vulnerability

A flaw was found in hw. The APIC can operate in xAPIC mode also known as a legacy mode, in which APIC configuration registers are exposed through a memory-mapped I/O MMIO page. This flaw allows an attacker who can execute code on a target CPU to query the APIC configuration page. When reading the...

Intel® Processors MMIO Undefined Access Advisory

Summary: A potential security vulnerability in Memory Mapped I/O MMIO for some 14nm Client/Xeon E3 Intel® Processors may allow a denial of service in certain virtualized environments. Vulnerability Details: CVEID: CVE-2022-21180 Description: Improper input validation for some Intel® Processors ma...

acuity (=6.18.0), acuitypro (=6.18.0) +3 more potentially affected by CVE-2019-16225 via lmdb (>=0.92.0 <=0.96.0)

lmdb PYPI version =0.92.0, =0.0.0, =0.100.2, =0.100.3rc1 Source cves: CVE-2019-16225 Source advisory: OSV:GHSA-C74C-P4P7-R8Q5...

CVE-2021-26332

Failure to verify SEV-ES TMR is not in MMIO space, SEV-ES FW could result in a potential loss of integrity or availability...