7 matches found
Qualcomm Chipsets 输入验证错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets, which stems from the fact that communication between the PRIMARY and GUEST VMs may result in memory corruption...
Out-of-bounds
VMware Tools for Windows update addresses an out of bounds read vulnerability in vm3dmp driver which is installed with vmtools in Windows guest machines. This issue is present in versions 10.2.x and 10.3.x prior to 10.3.10. A local attacker with non-administrative access to a Windows guest with...
CVE-2019-5522
CVE-2019-5522 concerns VMware Tools for Windows. The vulnerability is an out-of-bounds read in the vm3dmp driver installed with VMware Tools, affecting VMware Tools for Windows versions 10.2.x and 10.3.x prior to 10.3.10. A local attacker with non-administrative access in a Windows guest could le...
kernel: Improper validation in bnx2x network card driver can allow for denial of service attacks via crafted packet
Improper validation in the bnx2x network card driver of the Linux kernel version 4.15 can allow for denial of service DoS attacks via a packet with a gsosize larger than 9700 bytes. Untrusted guest VMs can exploit this vulnerability in the host machine, causing a crash in the network card...
Scientific Linux Security Update : hypervkvpd on SL5.x i386/x86_64 (20130509)
A denial of service flaw was found in the way hypervkvpd processed certain Netlink messages. A local, unprivileged user in a guest running on Microsoft Hyper-V could send a Netlink message that, when processed, would cause the guest's hypervkvpd daemon to exit. CVE-2012-5532 This update also fixe...
RHEL 5 : hypervkvpd (RHSA-2013:0807)
An updated hypervkvpd package that fixes one security issue and one bug is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
SuSE 10 Security Update : Xen (ZYPP Patch Number 8180)
Three security issues were found in XEN. Two security issues are fixed by this update : - Due to incorrect fault handling in the XEN hypervisor it was possible for a XEN guest domain administrator to execute code in the XEN host environment. CVE-2012-0217 - Also a guest user could crash the guest...