USN-5514-1: Linux kernel vulnerabilities

It was discovered that the implementation of the 6pack and mkiss protocols in the Linux kernel did not handle detach events properly in some situations, leading to a use-after-free vulnerability. A local attacker could possibly use this to cause a denial of service system crash. CVE-2022-1195...

USN-5514-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-azure-fde, linux-gcp, linux-gke, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities

It was discovered that the implementation of the 6pack and mkiss protocols in the Linux kernel did not handle detach events properly in some situations, leading to a use-after-free vulnerability. A local attacker could possibly use this to cause a denial of service system crash. CVE-2022-1195...

[SECURITY] Fedora 36 Update: xen-4.16.1-5.fc36

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Vulnerabilities fixed in Citrix Hypervisor

Vulnerabilities have been fixed in Citrix Hypervisor and Citrix XenServer. The vulnerabilities potentially enable a malicious party to able to derive memory content from another virtual machine. These vulnerabilities are only present when the vulnerable products are used on AMD Zen 1 or AMD Zen 2...

Citrix Hypervisor Security Bulletin for CVE-2022-23825 and CVE-2022-29900

AMD has disclosed an issue that affects AMD CPU hardware and may allow code inside a guest VM to infer the contents of RAM memory elsewhere on the host. Although this is not an issue in the Citrix Hypervisor product itself, Citrix is releasing hotfixes that include product changes to mitigate thi...

Citrix Releases Security Updates for Hypervisor

Citrix has released security updates to address vulnerabilities in Hypervisor. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Citrix Security Updates CTX461397 and apply the necessary updates. This product ...

The vulnerability of the cross-platform hypervisor Xen in Linux operating systems allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability of the cross-platform hypervisor Xen in the Linux operating system is related to the disclosure of information. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information or cause service failures...

The vulnerability of the cross-platform hypervisor Xen in the Linux operating system allows a hacker to execute arbitrary code.

The vulnerability of the cross-platform hypervisor Xen kernel in the Linux operating system is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the cross-platform hypervisor Xen in the Linux operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the cross-platform hypervisor Xen in the Linux operating system is related to the disclosure of information. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

The vulnerability of the cross-platform hypervisor Xen in the Linux operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the cross-platform hypervisor Xen in the Linux operating system is related to the disclosure of information. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

(0Day) xhyve e1000 Stack-based Buffer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of xhyve. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the e1000 virtual devic...

PT-2022-22978 · Xhyve · Xhyve

Name of the Vulnerable Software and Affected Versions: xhyve affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations. An attacker must first obtain the ability to execute high-privileged code on the target guest system in ord...

The vulnerability of Xen hypervisors relates to the execution of operations beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Xen hypervisors relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of Xen hypervisors arises from synchronization errors when using shared resources, allowing a perpetrator to execute arbitrary code.

The vulnerability of Xen hypervisors is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Xen hypervisors relates to the execution of operations beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Xen hypervisors relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

PT-2022-4043 · Linux +7 · Linux Kernel +7

Name of the Vulnerable Software and Affected Versions: Xen hypervisor affected versions not specified Linux kernel affected versions not specified Description: The issue is related to information disclosure in the Xen hypervisor and Linux kernel. It may allow an attacker to gain unauthorized acce...

PT-2022-3489 · Linux +7 · Linux Kernel +7

Name of the Vulnerable Software and Affected Versions: Xen hypervisor affected versions not specified Linux kernel affected versions not specified Description: The issue is related to information disclosure in the Xen hypervisor and Linux kernel. It may allow an attacker to gain unauthorized acce...

Xen 安全漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in Xen that...

[SECURITY] Fedora 36 Update: xen-4.16.1-4.fc36

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

CVE-2022-32295

On Ampere Altra and AltraMax devices before SRP 1.09, the Altra reference design of UEFI accesses allows insecure access to SPI-NOR by the OS/hypervisor component...