Design/Logic Flaw

Out of bound read access in hypervisor due to an invalid read access attempt by passing invalid addresses in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructu...

CVE-2020-3664

The CVE-2020-3664 entry refers to an out-of-bounds read in the hypervisor caused by invalid read accesses when passing incorrect addresses in various Snapdragon components (Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, Mobile, Voice & Music, Wired Infrastructure and Networking). Affe...

CVE-2020-3664

Out of bound read access in hypervisor due to an invalid read access attempt by passing invalid addresses in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructu...

Xen Scrubbed Pages Cache Information Disclosure (XSA-364)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by an information disclosure vulnerability. On Arm, a guest is allowed to control whether memory access bypass the cache. This means that Xen needs to ensure that all writes such as the ones...

UBUNTU-CVE-2021-27379

An issue was discovered in Xen through 4.11.x, allowing x86 Intel HVM guest OS users to achieve unintended read/write DMA access, and possibly cause a denial of service host OS crash or gain privileges. This occurs because a backport missed a flush, and thus IOMMU updates were not always correct...

Vulnerability fixed in Xen

The developers of the Xen hypervisor have fixed a vulnerability fixed. A local malicious party within a guest system could potentially exploit the vulnerability potentially exploit it to cause a denial-of-service cause on the host or to obtain elevated privileges. Versions of Xen equal to or high...

DEBIAN-CVE-2021-26934

An issue was discovered in the Linux kernel 4.18 through 5.10.16, as used by Xen. The backend allocation aka be-alloc mode of the drmxenfront drivers was not meant to be a supported configuration, but this wasn't stated accordingly in its support status entry...

CVE-2021-26933

An issue was discovered in Xen 4.9 through 4.14.x. On Arm, a guest is allowed to control whether memory accesses are bypassing the cache. This means that Xen needs to ensure that all writes such as the ones during scrubbing have reached the memory before handing over the page to a guest...

Citrix Hypervisor Security Update

Description of Problem Several security issues have been identified that, collectively, may allow privileged code running in a guest VM to cause the host to crash or to become unresponsive. These issues have the following CVE identifiers: CVE ID| Description| Vulnerability Type| Pre-conditions...

QEMU Plan 9 File System Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on affected installations of QEMU. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the handling of file...

Hotfix XS82E016 - For Citrix Hypervisor 8.2

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2. All customers who are affected by the issues described inCTX291439 - Citrix Hypervisor Multiple Security Updatesshould install this hotfix. Information About this Hotfix Component| Details ---|---...

Diagnosing an unresponsive Citrix Hypervisor server

This article describes how to diagnose an unresponsive XenServer or Citrix Hypervisor server. If you cannot connect to your Citrix Hypervisor server from XenCenter or other orchestration tool, you can use the steps in this article to attempt to regain access to the unresponsive server and gather...

Citrix Hypervisor Security Update

Description of Problem A security issue has been identified that may allow privileged code running in a guest VM to which a PCI passthrough device has been allocated to cause other VMs with PCI passthrough devices to fail to boot, crash or become unresponsive. This only applies to guest VMs where...

Hotfix XS82E015 - For Citrix Hypervisor 8.2

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2. Information About this Hotfix Component| Details ---|--- Prerequisite| None Post-update tasks| None Content live patchable| No Baselines for Live Patch| N/A Revision History| Published on Feb02, 2021 To...

Qualcomm SnapDragon Smart Protect Buffer Error Vulnerability

Qualcomm SnapDragon Smart Protect is a Qualcomm component that provides real-time security for devices. The technology uses machine learning to analyze behavior and protect devices from vulnerabilities in real time. Qualcomm SnapDragon Smart Protect suffers from a security vulnerability that stem...

[SECURITY] Fedora 32 Update: xen-4.13.2-6.fc32

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

FreeBSD-SA-21:02.xenoom

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-21:02.xenoom Security Advisory The FreeBSD Project Topic: Xen guests can triger backend Out Of Memory Category: contrib Module: Xen Announced: 2021-01-29...

Xen OOM DoS (XSA-349)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability due to an issue with the watch event queue. A malicious guest can exploit this, by abusing the unbounded queue, to cause an out-of-memory error in the...

UBUNTU-CVE-2021-3308

An issue was discovered in Xen 4.12.3 through 4.12.4 and 4.13.1 through 4.14.x. An x86 HVM guest with PCI pass through devices can force the allocation of all IDT vectors on the system by rebooting itself with MSI or MSI-X capabilities enabled and entries setup. Such reboots will leak any vectors...

[SECURITY] Fedora 33 Update: xen-4.14.1-2.fc33

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...