CVE-2026-23557

A flaw was found in xenstored, a component of Xen. Any guest operating system can cause xenstored to crash by issuing an XSRESETWATCHES command within a transaction, leading to a denial of service DoS. This occurs due to an assertion assert triggering, which can halt the xenstored process...

CVE-2026-43265

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM for x86 architectures. A local user or a malicious guest operating system could manipulate the virtual CPU vCPU state by injecting events while the vCPU is in a blocking state. This could lead to a spurious exit to userspace,...

CVE-2026-31600

A flaw was found in the Linux kernel's memory management for the arm64 architecture. The kernel incorrectly processes invalid large leaf mappings, which are specific entries used to manage system memory. This vulnerability can be triggered by a local user or a guest operating system, leading to a...

SUSE-RU-2026:20677-1 Recommended update for open-vm-tools

This update for open-vm-tools fixes the following issues: - update to 13.0.10 based on build 25056151 boo1257357: There are no new features in the open-vm-tools 13.0.10 release. This is primarily a maintenance release that addresses a fix. A minor enhancement has been made for Guest OS...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001047)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001047 advisory. arch/x86/kvm/vmx.c in the Linux kernel through 4.6.3 mishandles the APICv on/off state, which allows guest OS users to obtain direct APIC MSR access on the host OS,...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001534)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001534 advisory. arch/powerpc/kvm/book3srtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000817)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000817 advisory. The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service host OS panic or hang by...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000901)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000901 advisory. arch/x86/kvm/vmx.c in the Linux kernel through 4.9 mismanages the BP and OF exceptions, which allows guest OS users to cause a denial of service guest OS crash by...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001853)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001853 advisory. Race condition in arch/x86/kvm/x86.c in the Linux kernel before 3.17.4 allows guest OS users to cause a denial of service guest OS crash via a crafted application th...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002169)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002169 advisory. arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel through 3.17.2 does not have an exit handler for the INVVPID instruction, which allows guest OS users to...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003053)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003053 advisory. The Linux kernel component in IBM PowerKVM 2.1 before 2.1.1.3-65.10 and 3.1 before 3.1.0.2 allows guest OS users to cause a denial of service host OS infinite loop a...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003124)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003124 advisory. Improper invalidation for page table updates by a virtual guest operating system for multiple IntelR Processors may allow an authenticated user to potentially enable...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002474)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002474 advisory. The kvmiommumappages function in virt/kvm/iommu.c in the Linux kernel through 3.16.1 miscalculates the number of pages during the handling of a mapping failure, whic...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002761)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002761 advisory. arch/x86/kvm/vmx.c in the Linux kernel through 4.6.3 mishandles the APICv on/off state, which allows guest OS users to obtain direct APIC MSR access on the host OS,...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003244)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003244 advisory. arch/powerpc/kvm/book3shvrmhandlers.S in the Linux kernel through 4.7 on PowerPC platforms, when CONFIGKVMBOOK3S64HV is enabled, allows guest OS users to cause a...

CVE-2025-13193

Affects libvirt-based virtualization. CVE-2025-13193 causes external inactive snapshots for shut-down VMs to be world-readable, enabling information disclosure by unprivileged users. Public sources (Unity Linux UTSA-2025-993329; openSUSE openSUSE-SU-2025-20100-1; SUSE SUSE-SU-2026:0279-1) describ...

CVE-2025-13193

A flaw was found in libvirt. External inactive snapshots for shut-down VMs are incorrectly created as world-readable, making it possible for unprivileged users to inspect the guest OS contents. This results in an information disclosure vulnerability. Mitigation Mitigation for this issue is either...

Security update for open-vm-tools

This update for open-vm-tools fixes the following issues: Update to open-vm-tools 13.0.5 based on build 24915695. bsc1250692: Please refer to the Release Notes at: https://github.com/vmware/open-vm-tools/blob/stable-13.0.5/ReleaseNotes.md. The granular changes that have gone into the open-vm-tool...

EUVD-2017-0530

Malware in sbrugna...

EUVD-2020-11935

Malware in sbrugna...