CVE-2021-38923

IBM PowerVM Hypervisor FW1010 could allow a privileged user to gain access to another VM due to assigning duplicate WWPNs. IBM X-Force ID: 210162...

CVE-2021-38923

CVE-2021-38923 affects IBM PowerVM Hypervisor FW1010. The vulnerability arises from assigning duplicate WWPNs to virtual fiber channel adapters in peer VMs, which could allow a privileged user to gain access to another VM. Affected product: PowerVM Hypervisor FW1010 (Power 10 lineage). The IBM Se...

Security Bulletin: The PowerVM hypervisor can assign duplicate WWPN's to virtual fiber channel adapters in peer VMs

Summary In some cases the PowerVM hypervisor can assign duplicate WWPN's to virtual fiber channel adapters in peer VMs after a specific series of service actions are performed Vulnerability Details CVEID: CVE-2021-38923 DESCRIPTION: IBM PowerVM Hypervisor could allow a privileged user to gain...

Windows 11 is out. Is it any good for security?

Windows 11, the latest operating system OS from Microsoft, launches today, and organizations have begun asking themselves when and if they should upgrade from Windows 10 or older versions. The requirements and considerations of each organization will be different, and many things will inform the...

Workload Balancing virtual appliance 8.2.2 - For Citrix Hypervisor 8.2

Who Should Install This Update? This Workload Balancing virtual appliance update is for customers who use the Workload Balancing feature of Citrix Hypervisor 8.2. It constitutes the following deliverable: File Name| CitrixHypervisor-8.2.2-wlb.xva ---|--- Description| This file provides an updated...

Simplified Steps for Reverse Imaging PVS vDisk to Citrix Hypervisor VM

In order to accomplish some upgrades, you need to boot to the “hard drive” instead of the network. Some of the cases where booting to the hard drive are required: Uninstall PVS agent to upgrade Uninstall the Network Adapter to replace or upgrade Uninstall the Citrix Hypervisor tools to upgrade...

Fedora: Security Advisory for xen (FEDORA-2021-5a0c7bc619)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

USN-5094-2: Linux kernel (Raspberry Pi) vulnerabilities

It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute...

The vulnerability of the cross-platform hypervisor Xen kernel in the Linux operating system, related to uncontrolled resource consumption, allows a perpetrator to trigger a service failure for dom0 or domain drivers.

The vulnerability of the cross-platform hypervisor Xen in the Linux operating system is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow an attacker to cause a failure in the dom0 service or the domain driver...

Ubuntu: Security Advisory (USN-5094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Defend against zero-day exploits with Microsoft Defender Application Guard

Zero-day security vulnerabilities—known to hackers, but unknown to software creators, security researchers, and the public—are like gold to attackers. With zero-days, or even zero-hours, developers have no time to patch the code, giving hackers enough access and time to explore and map internal...

USN-5094-1: Linux kernel vulnerabilities

It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute...

Driver Disk for Qlogic qla2xxx 10.02.06.02-k - For Citrix Hypervisor 8.2 LTSR

Who Should Install this Driver Disk? Customers on non-Dell hardware running the Citrix Hypervisor 8.2 LTSR release who use Qlogic's qla2xxx driver and wish to use the latest version of the driver. Note: If you use Dell hardware, do not install this driver disk. This version of the driver disk is...

[SECURITY] Fedora 35 Update: xen-4.15.0-7.fc35

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 35 Update: xen-4.15.0-6.fc35

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Security Bulletin: This Power Hardware Management Console (HMC) Security Bulletin is being released to address Common Vulnerabilities and Exposures issue numbers CVE-2018-3639 (Variant 4) and CVE-2018-3640 (Variant 3a).

Summary In response to recently reported security vulnerabilities, this Power HMC Security Bulletin is released to address Common Vulnerabilities and Exposures issue numbers CVE-2018-3639 and CVE-2018-3640. Vulnerability Details CVEID: CVE-2018-3639 CVEID: CVE-2018-3640 Workarounds and Mitigation...

Ubuntu: Security Advisory (USN-5071-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: This Power Hardware Management Console (HMC) update is being released to address Common Vulnerabilities and Exposures issue numbers CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091 (known as MDS).

Summary In response to recently reported security vulnerabilities, this Power HMC Security Bulletin is released to address Common Vulnerabilities and Exposures issue numbers CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091. Vulnerability Details CVEID: CVE-2018-12126 CVEID:...

USN-5071-3: Linux kernel (Raspberry Pi) vulnerabilities

It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute...

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2021:3181-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:3181-1 advisory. - Another race in XENMAPSPACEgranttable handling Guests are permitted access to certain Xen-owned pages of memory. The majority of...