SUSE CVE-2026-31470

In the Linux kernel, the following vulnerability has been resolved: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length Validate host controlled value quotebuf-outlen that determines how many bytes of the quote are copied out to guest userspace. In TDX environments with remote...

PT-2026-34375

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the tdx-guest component where the host-controlled value quote buf-out len is not properly validated. This value determines the number of bytes of the quote copied to...

kernel: kvm: guest userspace to guest kernel write

A flaw was found in the way Linux kernel KVM hypervisor emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilegeCPL level while emulating unprivileged instructions. An unprivileged guest user/process could use this flaw to potentially escalate privileges inside...

Fedora 31 : xen (2019-6aad703290)

denial of service in findnextbit XSA-307, CVE-2019-19581, CVE-2019-19582 1782211 denial of service in HVM/PVH guest userspace code XSA-308, CVE-2019-19583 1782206 privilege escalation due to malicious PV guest XSA-309, CVE-2019-19578 1782210 Further issues with restartable PV type change operatio...

FreeBSD : xen-kernel -- x86: Mishandling of SYSCALL singlestep during emulation (942433db-c661-11e6-ae1b-002590263bf5)

The Xen Project reports : The typical behaviour of singlestepping exceptions is determined at the start of the instruction, with a DB trap being raised at the end of the instruction. SYSCALL and SYSRET, although we don't implement it behave differently because the typical behaviour allows userspa...