Lucene search
K

84 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in virglrenderer

A heap-based buffer overflow in the vrendrenderertransferwriteiov function in vrendrenderer.c in virglrenderer from version 0.8.0 allows guest OS users to cause a denial of service, or a QEMU guest-to-host escape and code execution, through VIRGLCCMDRESOURCEINLINEWRITE commands...

7.8CVSS6.6AI score0.00439EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Linux

A issue was discovered in the Linux kernel, specifically with versions up to 5.9.1, when used with Xen in versions up to 4.14.x. Users of guest operating systems may experience a denial of service where the host operating system hangs due to a high rate of events affecting dom0, also known as...

5.5CVSS6.5AI score0.0041EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Qemu

A stack overflow vulnerability was discovered in the Intel HD Audio device intel-hda of QEMU. A malicious guest could exploit this flaw to crash the QEMU process on the host, resulting in a denial of service condition. The greatest threat posed by this vulnerability is to system availability. Thi...

6.5CVSS6.5AI score0.00489EPSS
Exploits1References2
NVD
NVD
added 2026/05/27 2:17 p.m.12 views

CVE-2026-45890

In the Linux kernel, the following vulnerability has been resolved: xen-netback: reject zero-queue configuration from guest A malicious or buggy Xen guest can write "0" to the xenbus key "multi-queue-num-queues". The connect function in the backend only validates the upper bound requestednumqueue...

5.5CVSS0.00123EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-45890

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xen-netback: reject zero-queue configuration from guest A malicious or buggy Xen guest can write 0 to the xenbus key multi-queue-num-queues. The connect functio...

5.5CVSS6.2AI score0.00123EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.16 views

PT-2026-43757

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw in the xen-netback component allows a malicious or buggy Xen guest to cause a guest-to-host denial of service on systems where panic on warn is set to 1. The issue occurs because...

6.8CVSS5.4AI score0.00123EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2017-1000252

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The KVM subsystem in the Linux kernel through 4.13.3 allows guest OS users to cause a denial of service assertion failure, and hypervisor hang or crash via an...

5.5CVSS6.7AI score0.00452EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004756)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004756 advisory. A NULL pointer dereference flaw was found in the Linux kernels KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. Thi...

5.5CVSS6.7AI score0.00302EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000543)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000543 advisory. The apicgettmcct function in arch/x86/kvm/lapic.c in the KVM subsystem in the Linux kernel through 3.12.5 allows guest OS users to cause a denial of service...

5.7CVSS7AI score0.01446EPSS
Exploits2References26
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002302)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002302 advisory. The kvmiommumappages function in virt/kvm/iommu.c in the Linux kernel through 3.17.2 miscalculates the number of pages during the handling of a mapping failure, whic...

7.8CVSS6.8AI score0.01168EPSS
Exploits2References17
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.7 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002158)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002158 advisory. Race condition in arch/x86/kvm/x86.c in the Linux kernel before 3.17.4 allows guest OS users to cause a denial of service guest OS crash via a crafted application th...

4.9CVSS6.5AI score0.00374EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002093)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002093 advisory. The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non-canonical address to a...

5.5CVSS7AI score0.00595EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002462)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002462 advisory. Use-after-free vulnerability in arch/x86/kvm/x86.c in the Linux kernel through 3.8.4 allows guest OS users to cause a denial of service host OS memory corruption or...

6.8CVSS6.7AI score0.00894EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002179)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002179 advisory. arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, which allows guest OS users to cause a denial o...

5.5CVSS6.5AI score0.00588EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.3 views

MiracleLinux 3 : kvm-84-7AXS3 (AXSA:2009-490:03)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2009-490:03 advisory. This package provides the kvm kernel modules built for the Linux kernel CVE-2009-3638 Integer overflow in the kvmdevioctlgetsupportedcpuid function i...

7.8CVSS5.6AI score0.03112EPSS
Exploits3References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-7758

Malware in sbrugna...

7.8CVSS6.9AI score0.00352EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-5158

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in vringhkiovadvance in drivers/vhost/vringh.c in the host side of a virtio ring in the Linux Kernel. This issue may result in a denial of...

6.5CVSS6.6AI score0.00199EPSS
Exploits0References2
OSV
OSV
added 2024/11/11 3:11 p.m.7 views

USN-7100-1 linux, linux-aws-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15, linux-raspi, linux-xilinx-zynqmp vulnerabilities

Supraja Sridhara, Benedict Schlüter, Mark Kuhne, Andrin Bertschi, and Shweta Shinde discovered that the Confidential Computing framework in the Linux kernel for x86 platforms did not properly handle 32-bit emulation on TDX and SEV. An attacker with access to the VMM could use this to cause a deni...

8.8CVSS6.5AI score0.00879EPSS
Exploits8References224
RedHat Linux
RedHat Linux
added 2023/08/01 9:24 a.m.5 views

kernel: KVM: x86/mmu: race condition in direct_page_fault()

A flaw was found in the Linux kernel in the KVM. A race condition in directpagefault allows guest OS users to cause a denial of service host OS crash or host OS memory corruption when nested virtualization and the TDP MMU are enabled...

5.5CVSS6.7AI score0.00256EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/05/16 8:43 a.m.5 views

kernel: KVM: NULL pointer dereference in kvm_mmu_invpcid_gva

A flaw was found in KVM. With shadow paging enabled if INVPCID is executed with CR0.PG=0, the invlpg callback is not set, and the result is a NULL pointer dereference. This flaw allows a guest user to cause a kernel oops condition on the host, resulting in a denial of service...

6.9CVSS6.6AI score0.00318EPSS
Exploits0References6
Rows per page
Query Builder