206 matches found
PT-2013-1400 · Xen +1 · Xen +1
Name of the Vulnerable Software and Affected Versions: Xen versions 3.3 and earlier Description: The issue is related to an off-by-one error in the addr ok macro, which can be exploited by local 64-bit PV guest administrators to cause a denial of service, resulting in a host crash. This can be...
Debian DSA-1907-1 : kvm - several vulnerabilities
Several vulnerabilities have been discovered in kvm, a full virtualization system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-5714 Chris Webb discovered an off-by-one bug limiting KVM's VNC passwords to 7 characters. This flaw might make it...
Debian: Security Advisory (DSA-1907-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
kvm privilege escalation
kvmemulatehypercall doesn't filter MMU hypercalls from ring 0...
DSA-1907-1 kvm - several vulnerabilities
Bulletin has no description...
kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0
The kvmemulatehypercall function in arch/x86/kvm/x86.c in KVM in the Linux kernel 2.6.25-rc1, and other versions before 2.6.31, when running on x86 systems, does not prevent access to MMU hypercalls from ring 0, which allows local guest OS users to cause a denial of service guest kernel crash and...