x86 pv: Insufficient care with non-coherent mappings

ISSUE DESCRIPTION Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to maintain invariants required for Xen's safety, e.g. PV guests may not have direct writeable access to pagetables; updates need auditing by Xen. Unfortunately, Xen's...

CVE-2020-0543

Incomplete cleanup from specific special register read operations in some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

Intel® Graphics Driver for Windows* 2019.1 QSR Advisory

Summary: Multiple potential security vulnerabilities in Intel® Graphics Driver for Windows may allow denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2019-0113 Description: Insufficient bounds checking in IntelR...

x86: PV kernel context switch corruption

ISSUE DESCRIPTION On hardware supporting the fsgsbase feature, 64bit PV guests can set and clear the applicable control bit in its virtualised %cr4, but the feature remains fully active in hardware. Therefore, the associated instructions are actually usable. Linux, which does not currently suppor...

ivybridge-today.co.uk XSS vulnerability

Vulnerable URL: http://www.ivybridge-today.co.uk/search.cfm?sectionIs=search=LocalNews=2011="= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 31.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 6664122 VIP website status:| No...