CVE-2026-42487

HVM guest I/O port accesses are subject to either emulation or at least translation. Translations are managed by the device model via XENDOMCTLioportmapping, and hence the linked list used may changed at any time. Traversal of those lists while handling guest I/O port accesses therefore needs...

CVE-2026-42487

CVE-2026-42487 concerns the Xen hypervisor’s handling of x86 HVM I/O port list traversal. The root cause stated in the sources is that traversal of the linked list used for guest I/O port accesses requires synchronization with updates to the translation/mapping (XEN_DOMCTL_ioport_mapping), but th...

Fedora 44 : xen (2026-24b84f97af)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-24b84f97af advisory. x86 HVM I/O port list traversal XSA-491, CVE-2026-42487 domctl lock open to abuse XSA-492, CVE-2026-42489, CVE-2026-42490 Arm: Completion of memory...

PT-2026-48242

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Certain shadow paging error paths switch page-tables without updating the currently running vCPU reference. This creates a mismatch between the loaded page-table...

PT-2026-48244

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. To create and manage guests, domctl operations are used by the control domain, a possible Xenstore domain, or by a domain controlling a particular guest. Some of these...

Exploit for Improper Privilege Management in Patriotmemory Viper_Rgb_Firmware

GenericDrv amigendrv64.sys - Proof of Concept Overview...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004097)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004097 advisory. An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for x86 PV guests. An attacker may be granted the I/O port permissions o...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003178)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003178 advisory. The switchto function in arch/x86/kernel/process64.c in the Linux kernel does not properly context- switch IOPL on 64-bit PV Xen guests, which allows local guest OS...

EUVD-2010-0329

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2020-15852

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for x86 PV guests. An attacker may be granted the I/O port...

CVE-2024-45570

Memory corruption may occur during IO configuration processing when the IO port count is invalid...

CVE-2024-45570

Memory corruption may occur during IO configuration processing when the IO port count is invalid...

CVE-2024-45570 Use of Out-of-range Pointer Offset in Camera Driver

Memory corruption may occur during IO configuration processing when the IO port count is invalid...

CVE-2024-45570

CVE-2024-45570 is a memory corruption issue in Qualcomm chipsets that occurs during IO configuration processing when the IO port count is invalid. The vulnerability affects the IO configuration path (component/driver/function) and is described with a local attack vector, low authentication requir...

CVE-2024-55413

A vulnerability exits in driver snxppamd.sys in SUNIX Parallel Driver x64 - 10.1.0.0, which allows low-privileged users to read and write arbitary i/o port via specially crafted IOCTL requests . This can be exploited for privilege escalation, code execution under high privileges, and information...

SUSE CVE-2024-26977

In the Linux kernel, the following vulnerability has been resolved: pciiounmap: Fix MMIO mapping leak The ifdef ARCHHASGENERICIOPORTMAP accidentally also guards iounmap, which means MMIO mappings are leaked. Move the guard so we call iounmap for MMIO mappings...

SUSE CVE-2020-15852

An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for x86 PV guests. An attacker may be granted the I/O port permissions of an unrelated task. This occurs because tssinvalidateiobitmap mishandling causes a loss of synchronization between the I/O bitmaps ...

CVE-2021-21788

A privilege escalation vulnerability exists in the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O write requests. During IOCTL 0x9c40a0dc, the first dword passed in the input buffer is the device port to write to and the word at offset 4 is the value to write via...

The x86 emulator in KVM 83 does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) in determining the memory access available to CPL3 code which allows guest OS users to cause a denial of service (guest OS crash) or gain privileges on the guest OS by leveraging access to a (1) IO port or (2) MMIO region a related issue to CVE-2010-0306.

...

Xen Linux kernel privilege control vulnerability

Linux kernel is the kernel used by Linux, an open source operating system released by the Linux Foundation in the U.S. Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same...