CVE-2020-2025 Kata Containers - Cloud Hypervisor guests persist filesystem changes to the underlying host image file

Kata Containers before 1.11.0 on Cloud Hypervisor persists guest filesystem changes to the underlying image file on the host. A malicious guest can overwrite the image file to gain control of all subsequent guest VMs. Since Kata Containers uses the same VM image file with all VMMs, this issue may...

RHEL 8 : kernel-rt (RHSA-2020:2171)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2171 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

SUSE SLES12 Security Update : kernel (SUSE-SU-2020:1255-1)

The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2020-11494: An issue was discovered in slcbump in drivers/net/can/slcan.c, which allowed attackers to read uninitialized canframe data, potentially containing...

Fedora: Security Advisory for xen (FEDORA-2020-cbc3149753)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Kernel: kvm: nVMX: L2 guest may trick the L0 hypervisor to access sensitive L1 resources

A flaw was found in the way KVM hypervisor handled instruction emulation for the L2 guest when nested=1 virtualization is enabled. In the instruction emulation, the L2 guest could trick the L0 hypervisor into accessing sensitive bits of the L1 hypervisor. An L2 guest could use this flaw to...

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time...

Information Disclosure

kernel is vulnerable to information disclosure. An L2 guest may trick the L0 hypervisor to access confidential L1 resources...

Kernel: kvm: nVMX: L2 guest may trick the L0 hypervisor to access sensitive L1 resources

A flaw was found in the way KVM hypervisor handled instruction emulation for the L2 guest when nested=1 virtualization is enabled. In the instruction emulation, the L2 guest could trick the L0 hypervisor into accessing sensitive bits of the L1 hypervisor. An L2 guest could use this flaw to...

[SECURITY] Fedora 30 Update: xen-4.11.4-1.fc30

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 31 Update: xen-4.12.2-3.fc31

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Xen Bad Continuation Handling in GNTTABOP_copy DoS (XSA-318)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability in GNTTABOPcopy due to status fields of individual operations being left uninitialised. A buggy or malicious guest can construct its grant table in such ...

(Pwn2Own) Oracle VirtualBox E1000 IP Checksum Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

(Pwn2Own) Oracle VirtualBox OHCI Uninitialized Variable Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the...

F5 Networks BIG-IP : BIG-IP crypto driver vulnerability (K43815022)

The version of F5 Networks BIG-IP installed on the remote host is prior to 12.1.5.1 / 14.1.2.4 / 15.1.0. It is, therefore, affected by a vulnerability as referenced in the K43815022 advisory. Under certain conditions, the Intel QuickAssist Technology QAT cryptography driver may produce a Traffic...

Fedora: Security Advisory for xen (FEDORA-2020-440457afe4)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-1529)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of Xen hypervisors relates to the lack of a mechanism for verifying input data. This allows attackers to gain unauthorized access to confidential data, cause service failures, and compromise data integrity.

The vulnerability of Xen hypervisors is related to the lack of a mechanism for checking input data. Exploiting this vulnerability allows an attacker to gain unauthorized access to confidential data, cause service failures, and compromise data integrity...

The vulnerability of the physmap hardware virtualization concept in Xen hypervisors allows attackers to gain unauthorized access to confidential data, cause service failures, and compromise data integrity.

The vulnerability of the physmap hardware virtualization concept in Xen hypervisors is related to the lack of a mechanism for checking input data. Exploiting this vulnerability allows attackers to gain unauthorized access to confidential data, cause service failures, and compromise data integrity...

The vulnerability of Xen hypervisors relates to the lack of a mechanism for checking input data, allowing attackers to trigger a service failure.

The vulnerability of Xen hypervisors is related to the lack of a mechanism for checking input data. Exploiting this vulnerability allows an attacker to cause service failures...

The vulnerability of the LoadExcl and StoreExcl operations in the Xen hypervisor allows a perpetrator to trigger a service failure.

The vulnerability of the LoadExcl or StoreExcl operation in Xen hypervisors is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability allows a attacker to cause a service failure...