XenServer and Citrix Hypervisor Security Update for CVE-2024-45817

XenServer and Citrix Hypervisor Security Update Description of Problem An issue has been identified that affects both XenServer 8 and Citrix Hypervisor 8.2 CU1 LTSR and allow a malicious administrator of a guest VM to cause the host to crash or become unresponsive. This issue has the following...

PT-2024-6570 · Citrix +3 · Citrix Hypervisor 8.2 Cu1 +4

Name of the Vulnerable Software and Affected Versions: Xen affected versions not specified XenServer 8 Citrix Hypervisor 8.2 CU1 Description: The issue is related to the x86's APIC architecture, where error conditions are reported in a status register. The OS can opt to receive an interrupt when ...

The vulnerability of the x86 IOMMU Identity Mapping component in the cross-platform hypervisor Xen allows a attacker to influence the confidentiality, integrity, and accessibility of the system.

The vulnerability of the x86 IOMMU Identity Mapping component in the cross-platform hypervisor Xen is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

Hotfix XS82ECU1077 - For Citrix Hypervisor 8.2 Cumulative Update 1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2 Cumulative Update 1. All customers who are affected by the issues described inCTX691646 - Citrix Hypervisor Security Bulletinshould install this hotfix. Note: This hotfix is available only to customers on...

Hotfix XS82ECU1075 - For Citrix Hypervisor 8.2 Cumulative Update 1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2 Cumulative Update 1. Note: This hotfix is available only to customers on the Customer Success Services program. Where To Get This Hotfix Download Citrix Hypervisor 8.2 Cumulative Update 1 hotfixes from...

The vulnerability of the PCI DeviceHandler component in the cross-platform hypervisor Xen allows a perpetrator to influence the confidentiality, integrity, and accessibility of the system.

The vulnerability of the cross-platform hypervisor component PCI DeviceHandler is related to errors in the program code. Exploiting this vulnerability allows a malicious actor to influence the confidentiality, integrity, and accessibility of the system...

Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-7007-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7007-2 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to caus...

Driver Disk for Intel i40e 2.25.11 - For Citrix Hypervisor 8.2 Cumulative Update 1 LTSR

Who should install this driver disk? Customers running the Citrix Hypervisor 8.2 Cumulative Update 1 LTSR release who use Intel's i40e driver and wish to use the latest version of the following: Driver Module| Driver Type| Version ---|---|--- i40e| Ethernet/NIC| 2.25.11 Issues resolved in this...

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-7007-3)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7007-3 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use...

Xen: Multiple Vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time...

FreeBSD : FreeBSD -- bhyve(8) out-of-bounds read access via XHCI emulation (1febd09b-7716-11ef-9a62-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 1febd09b-7716-11ef-9a62-002590c1f29c advisory. bhyve can be configured to emulate devices on a virtual USB controller XHCI, such as USB tablet devices...

USN-7019-1 linux-xilinx-zynqmp vulnerabilities

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. CVE-2022-38096 Gui-Dong Han discovered that the...

The vulnerability of the x86 HVM Hypercall Handler component of the cross-platform hypervisor Xen in the Linux operating system allows a attacker to trigger a service failure.

The vulnerability of the x86 HVM Hypercall Handler component in the cross-platform hypervisor Xen for Linux operating systems is related to the ability to freely switch between 64-bit and other system modes. Exploiting this vulnerability could allow an attacker to trigger a service failure...

The vulnerability of the DeviceHandler component of the cross-platform Xen hypervisor for Linux operating systems allows a perpetrator to escalate their privileges.

The vulnerability of the DeviceHandler component in the cross-platform hypervisor Xen of the Linux operating system is related to the incorrect placement of the preprocessor directive in the source code. Exploiting this vulnerability can allow an attacker to increase their privileges...

ROS-20240916-09

The vulnerability of the x86 HVM Hypercall Handler component of the Xen kernel's x86 HVM hypervisor is related to the ability to freely switch between 64-bit and other system modes. Linux kernel hypervisor is related to the ability to freely switch between 64-bit and other system modes...

ROS-20240916-06

Vulnerability in the Device Handler component of the Xen cross-platform hypervisor of the Linux kernel is related to incorrect placement of a preprocessor directive in the source code. Exploiting the vulnerability could allow an attacker to escalate privileges...

SUSE CVE-2024-46689

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: cmd-db: Map shared memory as WC, not WB Linux does not write into cmd-db region. This region of memory is write protected by XPU. XPU may sometime falsely detect clean cache eviction as "write" into the write protected...

CVE-2024-46689

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: cmd-db: Map shared memory as WC, not WB Linux does not write into cmd-db region. This region of memory is write protected by XPU. XPU may sometime falsely detect clean cache eviction as "write" into the write protected...

RHSA-2016:0379 Red Hat Security Advisory: rhev-hypervisor security, bug fix and enhancement update

Bulletin has no description...

RHSA-2015:1713 Red Hat Security Advisory: rhev-hypervisor security, bug fix, and enhancement update

Bulletin has no description...