CVE-2020-15294

CVE-2020-15294 refers to a vulnerability in Bitdefender Hypervisor Introspection (HVI) prior to version 1.132.2. The root cause is a compiler optimization issue in IntPeParseUnwindData(), which can trigger multiple dereferences of the same pointer—potentially when that pointer is memory-mapped fr...

CVE-2020-15294 Compiler Optimization Removal or Modification of Security-Critical Code vulnerability in Bitdefender Hypervisor Introspection (VA-9339)

Compiler Optimization Removal or Modification of Security-critical Code vulnerability in IntPeParseUnwindData results in multiple dereferences to the same pointer. If the pointer is located in memory-mapped from the guest space, this may cause a race-condition where the generated code would...

CVE-2021-20257

RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. Recent assessments: NinjaOperator at June 25, 2021 6:16pm UTC reported:...

Bitdefender Hypervisor Introspection Input Validation Error Vulnerability

Bitdefender Hypervisor Introspection is a Hypervisor Introspection HVI security solution from Bitdefender Romania. It protects business-sensitive data before it is exposed by detecting and blocking cyberattacks in real-time. Bitdefender Hypervisor Introspection suffers from an Input Validation...

Bitdefender Hypervisor Introspection 安全漏洞

Bidefender Hypervisor Introspection HVI is a software from Bidefender Romania that checks the memory safety of running virtual machines at the Hypervisor layer using the VM self-test APIs of the Xen and KVM hypervisors. The software blocks code execution in abnormal memory by virtualizing the...

Bitdefender Hypervisor Introspection Input Validation Error Vulnerability

Bitdefender Hypervisor Introspection is a Hypervisor Introspection HVI security solution from Bitdefender Romania. It protects business-sensitive data before it is exposed by detecting and blocking cyberattacks in real-time. Bitdefender Hypervisor Introspection suffers from an input validation...

Debian: Security Advisory (DSA-4812-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Vulnerabilities fixed in Citrix Hypervisor

Citrix has fixed vulnerabilities in Hypervisor. The vulnerabilities allow a malicious person with the right to execute code execute code in the guest be able to obtain system data, appropriate assign privileges on the host or cause a denial-of-service cause a Denial-of-Service on the host. Citrix...

Debian DSA-4812-1 : xen - security update

Multiple vulnerabilities have been discovered in the Xen hypervisor : Several security issues affecting Xenstore could result in cross domain access denial of service, information leaks or privilege escalation or denial of service against xenstored. Additional vulnerabilities could result in...

ALPINE-CVE-2020-29481

An issue was discovered in Xen through 4.14.x. Access rights of Xenstore nodes are per domid. Unfortunately, existing granted access rights are not removed when a domain is being destroyed. This means that a new domain created with the same domid will inherit the access rights to Xenstore nodes...

DEBIAN-CVE-2020-29486

An issue was discovered in Xen through 4.14.x. Nodes in xenstore have an ownership. In oxenstored, a owner could give a node away. However, node ownership has quota implications. Any guest can run another guest out of quota, or create an unbounded number of nodes owned by dom0, thus running...

DEBIAN-CVE-2020-29567

An issue was discovered in Xen 4.14.x. When moving IRQs between CPUs to distribute the load of IRQ handling, IRQ vectors are dynamically allocated and de-allocated on the relevant CPUs. De-allocation has to happen when certain constraints are met. If these conditions are not met when first checke...

CVE-2020-29566

An issue was discovered in Xen through 4.14.x. When they require assistance from the device model, x86 HVM guests must be temporarily de-scheduled. The device model will signal Xen when it has completed its operation, via an event channel, so that the relevant vCPU is rescheduled. If the device...

CVE-2020-27777

The CVE-2020-27777 issue concerns the Linux kernel on PowerPC: RTAS memory accesses in the userspace-to-kernel path allow a local, root-like user on a locked-down guest (Secure Boot) running on PowerVM or KVM/pseries to escalate privileges to the running kernel. Root cause is an improper handling...

Citrix Hypervisor Security Update

Description of Problem Several security issues have been identified that, collectively, may allow privileged code running in a guest VM to compromise the host or cause a denial of service. These vulnerabilities have the following identifiers: CVE ID| Description| Vulnerability Type| Pre-condition...

USN-4659-2: Linux kernel regression

USN-4659-1 fixed vulnerabilities in the Linux kernel. Unfortunately, that update introduced a regression in the software raid10 driver when used with fstrim that could lead to data corruption. This update fixes the problem. Original advisory details: It was discovered that a race condition existe...

[SECURITY] [DSA 4804-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4804-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 04, 2020 https://www.debian.org/security/faq -...

[SECURITY] Fedora 32 Update: xen-4.13.2-4.fc32

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

The vulnerability of the VMware ESXi hypervisor and the VMware Cloud Foundation virtualization platform allows a perpetrator to execute arbitrary code.

The vulnerability of the VMware ESXi hypervisor and the VMware Cloud Foundation virtualization platform is related to the lack of protection for operational data. Exploiting this vulnerability can allow attackers to enhance their privileges...

USN-4659-1: Linux kernel vulnerabilities

It was discovered that a race condition existed in the binder IPC implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-0423 Daniele Antonioli, Nils Ole...