19 matches found
Azure Linux 3.0 Security Update: kernel (CVE-2010-0309)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2010-0309 advisory. - The pitioportread function in the Programmable Interval Timer PIT emulation in i8254.c in KVM 83 does not...
CBL Mariner 2.0 Security Update: kernel (CVE-2010-0309)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2010-0309 advisory. - The pitioportread function in the Programmable Interval Timer PIT emulation in i8254.c in KVM 83 does not...
CVE-2010-0309 affecting package kernel for versions less than 6.6.35.1-4
CVE-2010-0309 affecting package kernel for versions less than 6.6.35.1-4. A patched version of the package is available...
Debian: Security Advisory (DSA-1996-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-2010-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2010-0309 affecting package kernel 5.10.189.1-1
CVE-2010-0309 affecting package kernel 5.10.189.1-1. A patched version of the package is available...
kvm security, bug fix and enhancement update
kvm-83-164.0.1.el5 - Add kvm-Introduce-oel-machine-type.patch - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-164.el5 - kvm-Fix-Windows-guests-SVVP-tests.patch bz495844 - Resolves: bz495844 KVM SVVP: 'Signed Driver check' failure - on the disabled vCPUs that the VM's BIOS doesn't hid...
Ubuntu Update for Linux kernel vulnerabilities USN-914-1
Ubuntu Update for Linux kernel vulnerabilities USN-914-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9141.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for Linux kernel vulnerabilities USN-914-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-914-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : linux, linux-source-2.6.15 vulnerabilities (USN-914-1)
Mathias Krause discovered that the Linux kernel did not correctly handle missing ELF interpreters. A local attacker could exploit this to cause the system to crash, leading to a denial of service. CVE-2010-0307 Marcelo Tosatti discovered that the Linux kernel's hardware virtualization did not...
[SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2010 [email protected] http://www.debian.org/security/ Dann Frazier March 10, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2010 [email protected] http://www.debian.org/security/ Dann Frazier March 10, 2010 http://www.debian.org/security/faq - ------------------------------------------------------------------------...
Debian DSA-1996-1 : linux-2.6 - privilege escalation/denial of service/sensitive memory leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, sensitive memory leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-3939 Joseph Malicki reported that the dbglvl sysfs...
[SECURITY] [DSA-1996-1] New Linux 2.6.26 packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1996-1 [email protected] http://www.debian.org/security/ dann frazier February 12, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1996-1] New Linux 2.6.26 packages fix several vulnerabilities
---------------------------------------------------------------------- Debian Security Advisory DSA-1996-1 [email protected] http://www.debian.org/security/ dann frazier February 12, 2010 http://www.debian.org/security/faq - ----------------------------------------------------------------------...
CVE-2010-0309
The CVE concerns the pit_ioport_read function in the PIT emulation (i8254.c) of KVM 83, where improper use of the pit_state data structure can be exploited by a guest to trigger a host denial-of-service (host crash or hang) by reading /dev/port. Affected component is KVM's PIT emulation; impact i...
Important: Red Hat Security Advisory: kvm security and bug fix update
Updated kvm packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. KVM Kernel-based Virtual Machine is a full virtualization solution for...
kvm security and bug fix update
kvm-83-105.0.1.el54.22 - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-105.el54.22 - kvm-CVE-2010-0297-usb-linux.c-fix-buffer-overflow.patch bz560769 - Resolves: bz560769 CVE-2010-0297 kvm-userspace-rhel5: usb-linux.c: fix buffer overflow rhel-5.4.z kvm-83-105.el54.21 -...
Linux Kernel KVM pit_ioport_read()本地拒绝服务漏洞
BUGTRAQ ID: 38038 CVE ID: CVE-2010-0309 Linux Kernel是开放源码操作系统Linux所使用的内核。 在guest上执行cat /dev/port命令的时候,host会立即挂起。问题的起因是pitstate-channels有三个元素,pitioportread使用了addr作为pitgetcount的索引,因此inb0x43可能读写kvmkpitstate 的其他数据。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...