CVE-2022-37394

An issue was discovered in OpenStack Nova before 23.2.2, 24.x before 24.1.2, and 25.x before 25.0.2. By creating a neutron port with the direct vnictype, creating an instance bound to that port, and then changing the vnictype of the bound port to macvtap, an authenticated user may cause the compu...

CVE-2022-37394

An issue was discovered in OpenStack Nova before 23.2.2, 24.x before 24.1.2, and 25.x before 25.0.2. By creating a neutron port with the direct vnictype, creating an instance bound to that port, and then changing the vnictype of the bound port to macvtap, an authenticated user may cause the compu...

Virtuozzo Hybrid Infrastructure 4.5 Update 1 Hotfix 3 (4.5.1-42)

This update provides fixes for the storage and compute services. Vulnerability id: VSTOR-43250 Load balancer members are not displayed in the self-service panel. Vulnerability id: VSTOR-43236 A Kubernetes VM's system disk may be out of space due to Podman logs. Vulnerability id: VSTOR-41499...

Product release: Virtuozzo Hybrid Infrastructure 4.0 (4.0.0-734)

In this release, Virtuozzo Hybrid Infrastructure provides a wide range of new features that enhance the end-user experience and service providers' interoperability. The improvements cover networking, storage core, appliance, object storage, monitoring, performance charts, and localization...

Microsoft Windows Host Compute Service Shim Remote Code Execution (CVE-2018-8115)

A vulnerability exists in Microsoft windows host compute service shim x under 0.6.10. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

[Important] [Security] Virtuozzo PowerPanel Update 1 Hotfix 2 (7.0.4-47)

The update for Virtuozzo PowerPanel introduces a new feature and a security fix. Vulnerability id: PP-647 Fortify Docker configuration in the vzapi-compute service...

USN-4104-1 nova vulnerability

Donny Davis discovered that the Nova Compute service could return configuration or other information in response to a failed API request in some situations. A remote attacker could use this to expose sensitive information...

Windows Host Compute Service Shim Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Windows Host Compute Service Shim hcsshim library fails to properly validate input while importing a container image. To exploit the vulnerability, an attacker would place malicious code in a specially crafted container image which, if an...

KLA11239 ACE vulnerability in Windows Host Compute Service Shim

An remote code execution vulnerability was found in Windows Host Compute Service Shim. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted image container. Original advisories CVE-2018-8115 Exploitation...