5611 matches found
Buffer overflow
Off-by-one error in the flasksecurityavccachestats function in xsm/flask/flaskop.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denial of service host crash or obtain sensitive information from hypervisor memory by leveraging a...
CVE-2014-1895
Off-by-one error in the flasksecurityavccachestats function in xsm/flask/flaskop.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denial of service host crash or obtain sensitive information from hypervisor memory by leveraging a...
CVE-2014-1895
Technical details about CVE-2014-1895 are not publicly provided in the connected documents. While references to Xen vulnerabilities appear, there is no explicit information on affected versions, root cause specifics, impact, or fixes in the supplied material.
Important: Red Hat Security Advisory: rhev-hypervisor6 security update
An updated rhev-hypervisor6 package that fixes multiple security issues is now available. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for eac...
CORE-2014-0002 - Oracle VirtualBox 3D Acceleration Multiple Memory Corruption Vulnerabilities
Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Oracle VirtualBox 3D Acceleration Multiple Memory Corruption Vulnerabilities 1. Advisory Information Title: Oracle VirtualBox 3D Acceleration Multiple Memory Corruption Vulnerabilities Advisory ID: CORE-2014-0002 Advisory URL:...
HVMOP_set_mem_access is not preemptible
ISSUE DESCRIPTION Processing of the HVMOPsetmemaccess HVM control operations does not check the size of its input and can tie up a physical CPU for extended periods of time. IMPACT In a configuration where device models run with limited privilege for example, stubdom device models, a guest attack...
libvirt拒绝服务漏洞(CVE-2013-7336)
BUGTRAQ ID: 66304 CVE ID: CVE-2013-7336 Libvirt库是一种实现Linux虚拟化功能的Linux API,它支持各种Hypervisor,包括Xen和KVM,以及QEMU和用于其他操作系统的一些虚拟产品。 libvirt在实现上存在拒绝服务漏洞,攻击者可利用此漏洞造成受影响库崩溃。 0 libvirt 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://libvirt.org/index.html...
CentOS Update for kernel CESA-2014:0285 centos5
Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2014:0285 centos5 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
RedHat Update for kernel RHSA-2014:0285-01
Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2014:0285-01 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
CentOS 5 : kernel (CESA-2014:0285)
Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores,...
Oracle Linux 5 : kernel (ELSA-2014-0285-1)
From Red Hat Security Advisory 2014:0285 : Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Important security impact. Common...
Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20140312)
A buffer overflow flaw was found in the way the qethsnmpcommand function in the Linux kernel's QETH network device driver implementation handled SNMP IOCTL requests with an out-of-bounds length. A local, unprivileged user could use this flaw to crash the system or, potentially, escalate their...
kernel security update
CentOS Errata and Security Advisory CESA-2014:0285 Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Important security impact. Commo...
Oracle VM VirtualBox - 3D Acceleration Multiple Vulnerabilities
Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Oracle VirtualBox 3D Acceleration Multiple Memory Corruption Vulnerabilities 1. Advisory Information Title: Oracle VirtualBox 3D Acceleration Multiple Memory Corruption Vulnerabilities Advisory ID: CORE-2014-0002 Advisory URL:...
Oracle VirtualBox 3D Acceleration Memory Corruption Vulnerability
Core Security Technologies Advisory - Multiple memory corruption vulnerabilities have been found in the code that implements 3D Acceleration for OpenGL graphics in Oracle VirtualBox. These vulnerabilities could allow an attacker who is already running code within a Guest OS to escape from the...
Fedora Update for xen FEDORA-2014-2802
Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2014-2802 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...
[SECURITY] Fedora 19 Update: xen-4.2.4-2.fc19
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...
[SECURITY] Fedora 20 Update: xen-4.3.2-1.fc20
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...
[SECURITY] Fedora 20 Update: openstack-nova-2013.2.2-1.fc20
OpenStack Compute codename Nova is open source software designed to provision and manage large networks of virtual machines, creating a redundant and scalable cloud computing platform. It gives you the software, control panels, and APIs required to orchestrate a cloud, including running instances...
Fedora Update for xen FEDORA-2014-2170
Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2014-2170 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...