Oracle VirtualBox crServerDispatchGetMapdv Uninitialized Memory Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on vulnerable installations of Oracle VirtualBox. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

Oracle VirtualBox crServerDispatchGetTexEnviv Uninitialized Memory Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on vulnerable installations of Oracle VirtualBox. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

Privilege Escalation

rhev-hypervisor7 is vulnerable to denial of service DoS attacks. The vulnerability exists as kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulnerable to a flaw in the way the Linux kernel's KVM hypervisor handled exceptions...

[SECURITY] [DSA 4369-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4369-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 14, 2019 https://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-4369-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-16882

A use-after-free issue was found in the way the Linux kernel's KVM hypervisor processed posted interrupts when nested=1 virtualization is enabled. In nestedgetvmcs12pages, in case of an error while processing posted interrupt address, it unmaps the 'pidescpage' without resetting 'pidesc' descript...

Design/Logic Flaw

A use-after-free issue was found in the way the Linux kernel's KVM hypervisor processed posted interrupts when nested=1 virtualization is enabled. In nestedgetvmcs12pages, in case of an error while processing posted interrupt address, it unmaps the 'pidescpage' without resetting 'pidesc' descript...

CVE-2018-16882

A use-after-free issue was found in the way the Linux kernel's KVM hypervisor processed posted interrupts when nested=1 virtualization is enabled. In nestedgetvmcs12pages, in case of an error while processing posted interrupt address, it unmaps the 'pidescpage' without resetting 'pidesc' descript...

CVE-2018-16882

CVE-2018-16882 is a use-after-free in the Linux kernel KVM hypervisor when handling posted interrupts with nested virtualization. In nested_get_vmcs12_pages(), an error while processing the posted interrupt address can leave pi_desc_page unmapped without resetting the pi_desc descriptor, which is...

CVE-2018-16882

A use-after-free issue was found in the way the Linux kernel's KVM hypervisor processed posted interrupts when nested=1 virtualization is enabled. In nestedgetvmcs12pages, in case of an error while processing posted interrupt address, it unmaps the 'pidescpage' without resetting 'pidesc' descript...

CVE-2018-16882

A use-after-free issue was found in the way the Linux kernel's KVM hypervisor processed posted interrupts when nested=1 virtualization is enabled. In nestedgetvmcs12pages, in case of an error while processing posted interrupt address, it unmaps the 'pidescpage' without resetting 'pidesc' descript...

CVE-2018-16882

A use-after-free issue was found in the way the Linux kernel's KVM hypervisor processed posted interrupts when nested=1 virtualization is enabled. In nestedgetvmcs12pages, in case of an error while processing posted interrupt address, it unmaps the 'pidescpage' without resetting 'pidesc' descript...

UBUNTU-CVE-2018-16882

A use-after-free issue was found in the way the Linux kernel's KVM hypervisor processed posted interrupts when nested=1 virtualization is enabled. In nestedgetvmcs12pages, in case of an error while processing posted interrupt address, it unmaps the 'pidescpage' without resetting 'pidesc' descript...

PVS target devices are randomly getting unregistered and going down in PVS console

Target devices show up and running in hypervisor console Targets show down in PVS console and get unregistered intermittently Restart fixes the issue During the time of issue, ping to the target device works,but RDP fails...

Linux kernel KVM hypervisor memory misreference vulnerability

Linux kernel is the kernel used by the operating system Linux released by the Linux Foundation in the U.S. KVM hypervisor is one of the kernel-based virtual machines. A memory misreference vulnerability exists in the KVM hypervisor in the Linux kernel. An attacker could exploit this vulnerability...

The vulnerability of SVGA device implementations in VMware ESXi, VMware Fusion, and Vmware Workstation arises from operations that go beyond buffer boundaries in memory, allowing attackers to execute arbitrary code on the host system.

The vulnerability of SVGA devices in hypervisors such as VMware ESXi, VMware Fusion, and Vmware Workstation arises from operations that occur outside the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the host system remotely...

PT-2018-2986 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.14.91 Linux kernel versions prior to 4.19.13 Description: The issue is related to a use-after-free problem in the Linux kernel's KVM hypervisor when processing posted interrupts with nested virtualization...

ALPINE-CVE-2018-19963

An issue was discovered in Xen 4.11 allowing HVM guest OS users to cause a denial of service host OS crash or possibly gain host OS privileges because x86 IOREQ server resource accounting for external emulators was mishandled...

ALPINE-CVE-2018-19964

An issue was discovered in Xen 4.11.x allowing x86 guest OS users to cause a denial of service host OS hang because the p2m lock remains unavailable indefinitely in certain error conditions...

CVE-2018-6982

VMware ESXi 6.7 without ESXi670-201811401-BG and VMware ESXi 6.5 without ESXi650-201811301-BG contain uninitialized stack memory usage in the vmxnet3 virtual network adapter which may lead to an information leak from host to guest...