CVE-2021-26403

Insufficient checks in SEV may lead to a malicious hypervisor disclosing the launch secret potentially resulting in compromise of VM confidentiality...

CVE-2021-26403

CVE-2021-26403 corresponds to an AMD SEV vulnerability: insufficient checks in SEV could allow a malicious hypervisor to disclose the launch secret, risking VM confidentiality. Documented impact: local attacker with low privileges could compromise confidentiality; exploit details are not provided...

PT-2023-1484 · Amd · Amd Secure Encrypted Virtualization

Name of the Vulnerable Software and Affected Versions: AMD Secure Encrypted Virtualization SEV affected versions not specified Description: The issue is related to insufficient input validation in the implementation of AMD Secure Encrypted Virtualization SEV microcode in AMD processors. This coul...

Driver Disk for Qlogic netxtreme2 7.15.10 - For Citrix Hypervisor 8.2 LTSR

Who Should Install this Driver Disk? Customers on Dell hardware running the Citrix Hypervisor 8.2 LTSR release who use Qlogic's netxtreme2 driver and wish to use the latest version of the following: Driver Module| Version ---|--- netxtreme2| 7.15.10 bnx2x| 1.715.20 bnx2fc| 2.12.20 Note: If you us...

PT-2025-54133

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.1+g56321e101aca 1 Description The Linux kernel contains a flaw related to interrupt request handling in the tty serial driver for the imx platform. Specifically, pending USR interrupts may occur before the UA...

K11186236: Linux kernel KVM subsystem vulnerability CVE-2019-6974

Security Advisory Description In the Linux kernel before 4.20.8, kvmioctlcreatedevice in virt/kvm/kvmmain.c mishandles reference counting because of a race condition, leading to a use-after-free. CVE-2019-6974 Impact BIG-IP An attacker may use this vulnerability to cause a vCMP guest to crash,...

Exploit for Out-of-bounds Write in Qualcomm Apq8096Au_Firmware

CVE-2022-22063 CVE-2022-22063 is a security issue in the hyper...

Citrix Hypervisor Security Bulletin for CVE-2022-3643, CVE-2022-42328 & CVE-2022-42329

Several security issues have been identified in Citrix Hypervisor 8.2 LTSR CU1, each of which may allow a privileged user in a guest VM to cause the host to become unresponsive or crash. These issues have the following CVE identifiers: CVE-2022-3643 CVE-2022-42328 CVE-2022-42329...

[SECURITY] Fedora 37 Update: qemu-7.0.0-12.fc37

qemu is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu acts as a virtual machine monitor together with the KVM kernel modules, and emulates the hardware for a full system such as a PC and its associated peripherals...

CVE-2022-3107

CVE-2022-3107 affects the Linux kernel (up to 5.16-rc6) and is triggered in the netvsc driver (drivers/net/hyperv/netvsc_drv.c) where netvsc_get_ethtool_stats does not properly check the return value of kvmalloc_array(), leading to a NULL pointer dereference. The connected TencentOS/TSSA advisory...

Driver Disk for Microsemi smartpqi 2.1.20-035 - For Citrix Hypervisor 8.2 LTSR

Who Should Install this Driver Disk? Customers running the Citrix Hypervisor 8.2 LTSR release who use Microsemi's smartpqi driver and wish to use the latest version of the following: Driver Module| Version ---|--- smartpqi| 2.1.20-035 Issues Resolved In this Driver Disk Includes general...

CVE-2022-25681

Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...

Memory corruption

Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...

CVE-2022-25681

Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...

PT-2022-7162 · Parallels · Parallels Desktop

Name of the Vulnerable Software and Affected Versions: Parallels Desktop affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code o...

PT-2022-17460 · Qualcomm · Snapdragon Auto +4

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to possible memory corruption in the kernel while performing memory access. This occurs due to the hypervisor not correctly invalidating the processor...

CVE-2022-25681

CVE-2022-25681 describes memory corruption in the kernel caused by the hypervisor not correctly invalidating processor translation caches for Qualcomm Snapdragon platforms (Auto, Compute, Consumer IOT, Industrial IOT, Mobile). Affected component scope is the kernel in Snapdragon’s virtualization ...

The vulnerability of the network socket of the VMware ESXi hypervisor allows a attacker to execute arbitrary code with elevated privileges.

The vulnerability of the VMware ESXi hypervisor’s network socket is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges...

VMware ESXi和vCenter Server 安全漏洞

VMware ESXi and VMware vCenter Server are both products of VMware, Inc. VMware ESXi is a server virtualization platform that can be installed directly on physical servers. vMware vCenter Server is a suite of server and virtualization management software. The software provides a centralized platfo...

GSD-2022-1008179 HID: hyperv: fix possible memory leak in mousevsc_probe()

HID: hyperv: fix possible memory leak in mousevscprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.225 by commit...