Texas Instruments OMAP L138 Buffer Error Vulnerability

The Texas Instruments OMAP L138 is a DSP+ARM industrial processor from Texas Instruments. A security vulnerability exists in the Texas Instruments OMAP L138 secure variants, which arises from a TEE lack of boundary checking of the signature size field in the SKLOAD module load routine present in...

AZL-34597 CVE-2023-45853 affecting package cloud-hypervisor for versions less than 32.0-2

MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an...

AZL-42720 CVE-2023-45853 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1

MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an...

AZL-31298 CVE-2023-45853 affecting package cloud-hypervisor for versions less than 32.0-2

MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an...

AZL-42741 CVE-2023-45853 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1

MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an...

All VDAs reported as Power State Unknown in Studio

Connectivity is lost to the hypervisor and all VDAs show a power state unknown within the studio. The hosting connection test runs successfully Host Connection credentials are valid andnew machines can be created New machines are in power state unknown as well...

Xen Buffer Error Vulnerability

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in Xen, whic...

SUSE CVE-2023-34327

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. AMD CPUs since 2014 have extensions to normal x86 debugging functionality. Xen supports guests using these extensions. Unfortunately there are errors in Xen's handling of...

[SECURITY] Fedora 37 Update: xen-4.16.5-2.fc37

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

PT-2023-9392 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Xen versions affected versions not specified Linux kernel versions affected versions not specified Description: The issue is related to insufficient input validation in the libfsimage component of the Xen hypervisor and Linux kernel. This cou...

Citrix Hypervisor Multiple Security Updates

Description of Problem Several issues have been discovered that affect Citrix Hypervisor 8.2 CU1 LTSR and may allow malicious privileged code in a guest VM to: i Compromise an AMD-based host via a passed through PCI device: CVE-2023-34326 ii Compromise the host when a specific administrative acti...

Citrix Releases Security Updates for Multiple Products

Citrix has released security updates to address vulnerabilities affecting multiple products. A malicious cyber actor can exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Citrix security bulletins and apply...

Dissect - Digital Forensics, Incident Response Framework And Toolset That Allows You To Quickly Access And Analyse Forensic Artefacts From Various Disk And File Formats

Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT part of NCC Group. This project is a meta package, it will install all other Dissect modules with the...

[SECURITY] Fedora 39 Update: xen-4.17.2-2.fc39

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Fedora: Security Advisory for xen (FEDORA-2023-4125279976)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 38 Update: xen-4.17.2-2.fc38

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Xen Security Vulnerabilities

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. Xen has a security vulnerability that stems...

How to change the DNS for a Citrix Hypervisor

Change the DNS for Citrix Hypervisor...

Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2023-349)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-349 advisory. KVM: arm64: Prevent unconditional donation of unmapped regions from the hostNOTE: https://source.android.com/docs/security/bulletin/2023-08-01NOTE:...

Driver Disk for Mellanox mlnxen 5.9_0.5.5.0 - For Citrix Hypervisor 8.2 LTSR

Who should install this driver disk? Customers running the Citrix Hypervisor 8.2 LTSR release who use Mellanox's mlnxen driver and wish to use the latest version of the following: Driver Module| Version ---|--- mlxcompat| Not applicable mlxfw| Not applicable auxiliary| Not applicable mlxdevm| 1.0...