Design/Logic Flaw

HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior, a malicious guest can trigger a vulnerability in the host by abusing the disk driver that may lead to the disclosure of the host memory into the virtualized guest. This issue is fixed ...

[SECURITY] Fedora 37 Update: xen-4.16.3-2.fc37

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Hotfix XS82ECU1022 - For Citrix Hypervisor 8.2 Cumulative Update 1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2 Cumulative Update 1. Note: This hotfix is available only to customers on theCustomer Success Servicesprogram. Where To Get This Hotfix Download Citrix Hypervisor 8.2 Cumulative Update 1 hotfixes from...

Fedora: Security Advisory for xen (FEDORA-2023-c69a2a8f8b)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2021-32843

HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior of HyperKit, virtio.c has is a call to vccfgread that does not check for null which when called makes the host crash. This issue may lead to a guest crashing the host causing a denial o...

Code injection

HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior of HyperKit, vipciwrite has is a call to vccfgwrite that does not check for null which when called makes the host crash. This issue may lead to a guest crashing the host causing a denia...

Memory corruption

HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior of HyperKit, the implementation of qnotify at pcivtrndnotify fails to check the return value of vqgetchain. This leads to struct iovec iov; being uninitialized and used to read memory i...

Memory corruption

HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107, function pcivtsockproctx in virtio-sock can lead to to uninitialized memory use. In this situation, there is a check for the return value to be less or equal to VTSOCKMAXSEGS, but that check is...

CVE-2021-32844

CVE-2021-32844 affects HyperKit up to version 0.20210107. The vulnerability originates from a null-pointer check omission in the vi_pci_write path calling vc_cfgwrite, which can cause the host to crash and potentially lead to a denial of service. The issue is fixed in commit 451558fe8aaa8b24e02e3...

CVE-2021-32843

HyperKit prior to 0.20210107 contains a null-check flaw in virtio.c where vc_cfgread is called without validating pointers, allowing a guest to crash the host and cause a denial of service. A fix is available in commit df0e46c7dbfd81a957d85e449ba41b52f6f7beb4. Affected users should upgrade to the...

Xen 安全漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports migration at runtime to ensure uptime and avoid downtime. A security vulnerability exists in Xen...

SUSE CVE-2007-5498

The Xen hypervisor block backend driver for Linux kernel 2.6.18, when running on a 64-bit host with a 32-bit paravirtualized guest, allows local privileged users in the guest OS to cause a denial of service host OS crash via a request that specifies a large number of blocks...

SUSE CVE-2007-5906

Xen 3.1.1 allows virtual guest system users to cause a denial of service hypervisor crash by using a debug register DR7 to set certain breakpoints...

SUSE CVE-2008-3687

Heap-based buffer overflow in the flasksecuritylabel function in Xen 3.3, when compiled with the XSM:FLASK module, allows unprivileged domain users domU to execute arbitrary code via the flaskop hypercall...

SUSE CVE-2009-1758

The hypervisorcallback function in Xen, possibly before 3.4.0, as applied to the Linux kernel 2.6.30-rc4, 2.6.18, and probably other versions allows guest user applications to cause a denial of service kernel oops of the guest OS by triggering a segmentation fault in "certain address ranges."...

SUSE CVE-2010-0435

The Hypervisor aka rhev-hypervisor in Red Hat Enterprise Virtualization RHEV 2.2, and KVM 83, when the Intel VT-x extension is enabled, allows guest OS users to cause a denial of service NULL pointer dereference and host OS crash via vectors related to instruction emulation...

SUSE CVE-2010-0730

The MMIO instruction decoder in the Xen hypervisor in the Linux kernel 2.6.18 in Red Hat Enterprise Linux RHEL 5 allows guest OS users to cause a denial of service 32-bit guest OS crash via vectors that trigger an unspecified instruction emulation...

SUSE CVE-2010-0741

The virtionetbadfeatures function in hw/virtio-net.c in the virtio-net driver in the Linux kernel before 2.6.26, when used on a guest OS in conjunction with qemu-kvm 0.11.0 or KVM 83, allows remote attackers to cause a denial of service guest OS crash, and an associated qemu-kvm process exit by...

SUSE CVE-2010-2653

Race condition in the hvcclose function in drivers/char/hvcconsole.c in the Linux kernel before 2.6.34 allows local users to cause a denial of service or possibly have unspecified other impact by closing a Hypervisor Virtual Console device, related to the hvcopen and hvcremove functions...

SUSE CVE-2011-1166

Xen, possibly before 4.0.2, allows local 64-bit PV guests to cause a denial of service host crash by specifying user mode execution without user-mode pagetables...