PT-2022-2472 · Amd +1 · Amd Cpus +1

Name of the Vulnerable Software and Affected Versions: AMD CPUs affected versions not specified Description: The issue is related to the implementation of the SEV-SNP Secure Nested Paging protective mechanism for virtual machines running on servers with AMD processors, which is associated with da...

Ciphertext Side Channels on AMD SEV - Lenovo Support US

No description provided...

CVE-2021-46744

An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV guest on AMD CPUs by monitoring ciphertext values over time...

Microsoft Hyper-V 资源管理错误漏洞

Microsoft Hyper-V is an application from Microsoft Corporation USA. A system hypervisor virtualization technology that enables desktop virtualization. A resource management error vulnerability exists in Microsoft Hyper-V. The following products and editions are affected: Windows 10 Version 21H1 f...

NewStart CGSL MAIN 4.06 : kernel Multiple Vulnerabilities (NS-SA-2022-0075)

The remote NewStart CGSL host, running version MAIN 4.06, has kernel packages installed that are affected by multiple vulnerabilities: - The offset2lib patch as used by the Linux Kernel contains a vulnerability, if RLIMITSTACK is set to RLIMINFINITY and 1 Gigabyte of memory is allocated the maxim...

[SECURITY] Fedora 36 Update: xen-4.16.1-1.fc36

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 34 Update: xen-4.14.5-1.fc34

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Qualcomm 安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits including primarily semiconductor devices, but also passive components, etc. and is manufactured from time to time on the surface of semiconductor wafers. A security vulnerability exists in multiple Qualcomm...

GSD-2022-1001985 Drivers: hv: vmbus: Fix potential crash on module unload

Drivers: hv: vmbus: Fix potential crash on module unload This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.111 by commit...

GSD-2022-1001369 Drivers: hv: vmbus: Fix potential crash on module unload

Drivers: hv: vmbus: Fix potential crash on module unload This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.20 by commit...

Openstack nova qcow format could expose host filesystem information

Versions of nova before 2012.1 could expose hypervisor host files to a guest operating system when processing a maliciously constructed qcow filesystem...

GHSA-HQFX-4X4W-VMWP Openstack nova qcow format could expose host filesystem information

Versions of nova before 2012.1 could expose hypervisor host files to a guest operating system when processing a maliciously constructed qcow filesystem...

Fedora: Security Advisory for xen (FEDORA-2022-dfbf7e2372)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 35 Update: xen-4.15.2-3.fc35

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

No memory limit for dom0less domUs (XSA-383)

The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allows a domain to allocate memory beyond what an administrator originally configured. Note that Nessus has not tested for this issue...

The vulnerability of the rhttpproxy service of the VMware Cloud Foundation virtualization platform and the VMware ESXi hypervisor allows a attacker to cause a service failure.

The vulnerability of the rhttpproxy service of the VMware Cloud Foundation virtualization platform and the VMware ESXi hypervisor is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the VMX service on the VMware Cloud Foundation virtualization platform and the VMware ESXi hypervisor allows a perpetrator to escalate their privileges.

The vulnerability of the VMX service on the VMware Cloud Foundation and the VMware ESXi hypervisor platform is related to lack of access control mechanisms. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of Xen hypervisors, related to the use of memory after it is freed, allows attackers to obtain confidential information, increase their privileges, or cause the application to terminate abnormally.

The vulnerability of Xen hypervisors is related to the use of memory after it has been freed. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

The vulnerability of the dom0less Xen hypervisor function, allowing a attacker to trigger a service failure

The vulnerability of the dom0less Xen hypervisor relates to the provision of unlimited memory. Exploiting this vulnerability allows a remote attacker to cause a service failure...

The vulnerability of Xen hypervisors relates to the insecure management of privileges, which allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of Xen hypervisors is related to insecure management of privileges. Exploiting this vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures...