Arbitrary Code Execution

openjdk is vulnerable to arbitrary code execution. A flaw was found in the HotSpot component in OpenJDK. Certain bytecode instructions confused the memory management within the Java Virtual Machine JVM, which could lead to heap corruption...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as a flaw was found in the way KVM Kernel-based Virtual Machine handled the reloading of fs and gs segment registers when they had invalid selectors. A privileged host user with access to "/dev/kvm" could use this flaw to cra...

Denial Of Service (DoS)

java is vulnerable to denial of service DoS. The vulenrability exists as a flaw was found in the way that the Java Virtual Machine JVM handled temporary font files. A malicious applet could use this flaw to use large amounts of disk space, causing a denial of service...

Old files are not removed after a migration of virtual machine storage in Windows 8.1 or Windows Server 2012 R2

Old files are not removed after a migration of virtual machine storage in Windows 8.1 or Windows Server 2012 R2 This article describes an issue that occurs after you perform a migration of virtual machine storage in Windows 8.1 or Windows Server 2012 R2. An update is available to resolve this...

March 2016 update for Windows Server 2012 R2 clusters to fix several issues

March 2016 update for Windows Server 2012 R2 clusters to fix several issues This article describes issues in which Data Protection Manager DPM filter driver can't track changes on Cluster Shared Volumes CSV or virtual machine VM configuration resource online fails due to invalid resource state in...

Linux kernel KVM Competitive Conditions Issue Vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the KVM's of the Linux kernel for PowerPC processors, which stems from the program's failure to properly separate the state of the...

virt:rhel security and bug fix update

An update is available for libiscsi, netcf, sgabios. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Kernel-based Virtual Machine KVM offers a full virtualizatio...

ROHNP: Key Extraction Side Channel in Multiple Crypto Libraries

Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. T...

CVE-2020-11450

Microstrategy Web 10.4 exposes the JVM configuration, CPU architecture, installation folder, and other information through the URL /MicroStrategyWS/happyaxis.jsp. An attacker could use this vulnerability to learn more about the environment the application is running in. This issue has been...

CVE-2020-4325

The IBM Process Federation Server 18.0.0.1, 18.0.0.2, 19.0.0.1, 19.0.0.2, and 19.0.0.3 Global Teams REST API does not properly shutdown the thread pools that it creates to retrieve Global Teams information from the federated systems. As a consequence, the Java Virtual Machine can't recover the...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Rational ClearCase

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Versions 7 and 8, which are used by IBM Rational ClearCase. These issues were disclosed as part of the IBM Java SDK updates in October 2019 and January 2020. Vulnerability Details CVEID: CVE-2019-2989 DESCRIPTION: An...

Update Rollup 9 for System Center 2016 Virtual Machine Manager

Update Rollup 9 for System Center 2016 Virtual Machine Manager Introduction This article describes the issues that are fixed in System Center Virtual Machine Manager 2016 UR9 release. There are two updates that are available for Virtual Machine Manager, one for the Virtual Machine Manager server...

USN-4303-1 linux, linux-aws, linux-kvm vulnerability

Paulo Bonzini discovered that the KVM hypervisor implementation in the Linux kernel could improperly let a nested level 2 guest access the resources of a parent level 1 guest in certain situations. An attacker could use this to expose sensitive information...

Privilege escalation

Modern DRAM chips DDR4 and LPDDR4 after 2015 are affected by a vulnerability in deployment of internal mitigations against RowHammer attacks known as Target Row Refresh TRR, aka the TRRespass issue. To exploit this vulnerability, the attacker needs to create certain access patterns to trigger bit...

CVE-2020-10255

Modern DRAM chips DDR4 and LPDDR4 after 2015 are affected by a vulnerability in deployment of internal mitigations against RowHammer attacks known as Target Row Refresh TRR, aka the TRRespass issue. To exploit this vulnerability, the attacker needs to create certain access patterns to trigger bit...

Intel SGX and Processor Side Channel Data Leakage Vulnerabilities - Lenovo Support US

Lenovo Security Advisory: LEN-30553 Potential Impact: Information disclosure, escalation of privilege Severity: Medium Scope of Impact: Industry-wide CVE Identifier: CVE-2020-0551, CVE-2020-0561 Summary Description: Intel reported potential security vulnerabilities in some Intel Processors that m...

Intel SGX and Processor Side Channel Data Leakage Vulnerabilities - Lenovo Support US

No description provided...

UBUNTU-CVE-2020-2732

A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest...

Java Debug Wire Protocol (JDWP) Service Detection (TCP)

TCP based detection of services supporting the Java Debug Wire Protocol JDWP. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a...