HVMOP_set_mem_access is not preemptible

ISSUE DESCRIPTION Processing of the HVMOPsetmemaccess HVM control operations does not check the size of its input and can tie up a physical CPU for extended periods of time. IMPACT In a configuration where device models run with limited privilege for example, stubdom device models, a guest attack...

libvirt拒绝服务漏洞(CVE-2013-7336)

BUGTRAQ ID: 66304 CVE ID: CVE-2013-7336 Libvirt库是一种实现Linux虚拟化功能的Linux API，它支持各种Hypervisor，包括Xen和KVM，以及QEMU和用于其他操作系统的一些虚拟产品。 libvirt在实现上存在拒绝服务漏洞，攻击者可利用此漏洞造成受影响库崩溃。 0 libvirt 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://libvirt.org/index.html...

RedHat Update for kernel RHSA-2014:0285-01

Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2014:0285-01 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

CentOS Update for kernel CESA-2014:0285 centos5

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2014:0285 centos5 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

CentOS 5 : kernel (CESA-2014:0285)

Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores,...

Oracle Linux 5 : kernel (ELSA-2014-0285-1)

From Red Hat Security Advisory 2014:0285 : Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Important security impact. Common...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20140312)

A buffer overflow flaw was found in the way the qethsnmpcommand function in the Linux kernel's QETH network device driver implementation handled SNMP IOCTL requests with an out-of-bounds length. A local, unprivileged user could use this flaw to crash the system or, potentially, escalate their...

kernel security update

CentOS Errata and Security Advisory CESA-2014:0285 Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Important security impact. Commo...

Oracle VM VirtualBox - 3D Acceleration Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Oracle VirtualBox 3D Acceleration Multiple Memory Corruption Vulnerabilities 1. Advisory Information Title: Oracle VirtualBox 3D Acceleration Multiple Memory Corruption Vulnerabilities Advisory ID: CORE-2014-0002 Advisory URL:...

Oracle VirtualBox 3D Acceleration Memory Corruption Vulnerability

Core Security Technologies Advisory - Multiple memory corruption vulnerabilities have been found in the code that implements 3D Acceleration for OpenGL graphics in Oracle VirtualBox. These vulnerabilities could allow an attacker who is already running code within a Guest OS to escape from the...

Fedora Update for xen FEDORA-2014-2802

Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2014-2802 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

[SECURITY] Fedora 19 Update: xen-4.2.4-2.fc19

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 20 Update: xen-4.3.2-1.fc20

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 20 Update: openstack-nova-2013.2.2-1.fc20

OpenStack Compute codename Nova is open source software designed to provision and manage large networks of virtual machines, creating a redundant and scalable cloud computing platform. It gives you the software, control panels, and APIs required to orchestrate a cloud, including running instances...

Fedora Update for xen FEDORA-2014-2170

Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2014-2170 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

Fedora Update for xen FEDORA-2014-2188

Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2014-2188 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

[SECURITY] Fedora 20 Update: xen-4.3.1-9.fc20

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 19 Update: xen-4.2.3-15.fc19

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Scientific Linux Security Update : kvm on SL5.x x86_64 (20140212)

A divide-by-zero flaw was found in the apicgettmcct function in KVM's Local Advanced Programmable Interrupt Controller LAPIC implementation. A privileged guest user could use this flaw to crash the host. CVE-2013-6367 A memory corruption flaw was discovered in the way KVM handled virtual APIC...

Off-by-one error in FLASK_AVC_CACHESTAT hypercall

ISSUE DESCRIPTION The FLASKAVCCACHESTAT hypercall, which provides access to per-cpu statistics on the Flask security policy, incorrectly validates the CPU for which statistics are being requested. IMPACT An attacker can cause the hypervisor to read past the end of an array. This may result in...