CVE-2025-34314

IPFire versions prior to 2.29 Core Update 198 contain a stored cross-site scripting XSS vulnerability that allows an authenticated attacker to inject arbitrary JavaScript code through the SRC, DST, and COMMENT parameters when creating a time constraint rule. When a user adds a time constraint rul...

EUVD-2020-0117

Malware in sbrugna...

OpenStack Nova Live migration fails to update persistent domain XML

An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that share the same paths ...

Authorization Bypass

nova is vulnerable to authorization bypass. The vulnerability exists as it was possible to include block devices that maps to different Cinder volumes from the source, allowing access to destination host devices that share the same paths as the previous host devices...

PYSEC-2020-243

An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that share the same paths ...

Design/Logic Flaw

An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that share the same paths ...

CVE-2020-17376

An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that share the same paths ...

qemu: virtio: insufficient validation of num_sg when mapping

An user able to alter the savevm data either on the disk or over the wire during migration could use this flaw to to corrupt QEMU process memory on the destination host, which could potentially result in arbitrary code execution on the host with the privileges of the QEMU process...

qemu: virtio: insufficient validation of num_sg when mapping

An user able to alter the savevm data either on the disk or over the wire during migration could use this flaw to to corrupt QEMU process memory on the destination host, which could potentially result in arbitrary code execution on the host with the privileges of the QEMU process...

dovecot security and bug fix update

1:2.0.9-5 - script-login did not drop privileges correctly 709095 - fix directory traversal due to not obeying chroot directive 709097 - check proxy destination host against SSL certificate name 754980 1:2.0.9-4 - dovecot may not set correct premissions for mail folder 697620 1:2.0.9-3 - fix...

Failover or Surebackup Starts a Virtual Machine With an Incorrect Ethernet Interface

Article Applicability The issue discussed in this article is strictly related to the use of VMXNET3 network adapters with the following vSphere VM guest operating systems: Windows 7 Windows 7 SP1 Server 2008 R2 Server 2008 R2 SP1 Challenge When you back up/replicate/copy/clone a vSphere VM runnin...

Update Protection against Microsoft ISA Server Manipulation Vulnerability

ISA Server 2004 is an application-layer firewall, virtual private network VPN, and Web cache solution. A Log Manipulation vulnerability was reported in Microsoft ISA Server 2004. When exploited, the vulnerability will enable an attacker to manipulate the Destination Host parameter of the log file...