16 matches found
Debian: Security Advisory (DSA-1996-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-2010-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The x86 emulator in KVM 83 does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) in determining the memory access available to CPL3 code which allows guest OS users to cause a denial of service (guest OS crash) or gain privileges on the guest OS by leveraging access to a (1) IO port or (2) MMIO region a related issue to CVE-2010-0306.
...
Ubuntu: Security Advisory (USN-947-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
kvm security, bug fix and enhancement update
kvm-83-164.0.1.el5 - Add kvm-Introduce-oel-machine-type.patch - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-164.el5 - kvm-Fix-Windows-guests-SVVP-tests.patch bz495844 - Resolves: bz495844 KVM SVVP: 'Signed Driver check' failure - on the disabled vCPUs that the VM's BIOS doesn't hid...
[SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2010 [email protected] http://www.debian.org/security/ Dann Frazier March 10, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2010 [email protected] http://www.debian.org/security/ Dann Frazier March 10, 2010 http://www.debian.org/security/faq - ------------------------------------------------------------------------...
Debian DSA-1996-1 : linux-2.6 - privilege escalation/denial of service/sensitive memory leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, sensitive memory leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-3939 Joseph Malicki reported that the dbglvl sysfs...
[SECURITY] [DSA-1996-1] New Linux 2.6.26 packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1996-1 [email protected] http://www.debian.org/security/ dann frazier February 12, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1996-1] New Linux 2.6.26 packages fix several vulnerabilities
---------------------------------------------------------------------- Debian Security Advisory DSA-1996-1 [email protected] http://www.debian.org/security/ dann frazier February 12, 2010 http://www.debian.org/security/faq - ----------------------------------------------------------------------...
Design/Logic Flaw
The x86 emulator in KVM 83 does not use the Current Privilege Level CPL and I/O Privilege Level IOPL in determining the memory access available to CPL3 code, which allows guest OS users to cause a denial of service guest OS crash or gain privileges on the guest OS by leveraging access to a 1 IO...
CVE-2010-0306
The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing SMP, does not use the Current Privilege Level CPL and I/O Privilege Level IOPL to restrict instruction execution, which allows guest OS users to cause a denial of service guest OS crash or gain privileges on the...
CVE-2010-0306
The connected MiracleLinux AXSA advisory references CVE-2010-0306, describing a vulnerability in the KVM x86 emulator: when a guest is SMP-configured, CPL/IOPL checks are not applied to memory access for CPL3 code. This allows guest OS users to crash the guest or potentially gain privileges by ab...
CVE-2010-0298
Summary: CVE-2010-0298 affects the x86 emulator in KVM 83, where CPL/IOPL checks are not applied to CPL3 memory accesses, enabling a guest OS user to crash the guest or gain privileges via an IO port or MMIO region (related to CVE-2010-0306). What is affected: KVM/x86 emulator code in affected Li...
Important: Red Hat Security Advisory: kvm security and bug fix update
Updated kvm packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. KVM Kernel-based Virtual Machine is a full virtualization solution for...
kvm security and bug fix update
kvm-83-105.0.1.el54.22 - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-105.el54.22 - kvm-CVE-2010-0297-usb-linux.c-fix-buffer-overflow.patch bz560769 - Resolves: bz560769 CVE-2010-0297 kvm-userspace-rhel5: usb-linux.c: fix buffer overflow rhel-5.4.z kvm-83-105.el54.21 -...