Astra Linux - уязвимость в libvirt

A flaw was discovered in the libvirt libxl driver. A malicious guest could continuously reboot itself, causing libvirtd on the host to become locked out or crash, resulting in a denial-of-service condition...

SUSE CVE-2026-43096

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix infinite fault loop on permission-denied GPA intercepts Prevent infinite fault loops when guests access memory regions without proper permissions. Currently, mshvhandlegpaintercept attempts to remap pages for all faults...

CVE-2026-43096

A flaw was found in the Linux kernel's mshv component. A malicious guest operating system could exploit this by attempting to write to read-only memory regions or execute code in non-executable regions. This can lead to an infinite fault loop, causing the virtual CPU vCPU to spin indefinitely and...

CVE-2026-35195

A flaw was found in Wasmtime, a runtime for WebAssembly. A malicious guest component can exploit an issue where the host does not validate memory allocation requests. This allows the guest to write arbitrary data to locations outside its designated memory. Depending on the configuration, this cou...

CVE-2023-31364

Improper handling of direct memory writes in the input-output memory management unit could allow a malicious guest virtual machine VM to flood a host with writes, potentially causing a fatal machine check error resulting in denial of service...

CVE-2025-14876

A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation. This can result in a denial of service DoS on the host system by causing the QEMU process to terminate...

CVE-2025-33220

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause heap memory access after the memory is freed. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or...

CVE-2025-33220

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause heap memory access after the memory is freed. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or...

MiracleLinux 9 : dpdk-23.11-2.el9_5 (AXSA:2025-9535:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9535:01 advisory. dpdk: Denial Of Service from malicious guest on hypervisors using DPDK Vhost library CVE-2024-11614 Tenable has extracted the preceding description block...

EUVD-2021-26856

Malware in sbrugna...

EUVD-2021-27146

Malware in sbrugna...

EUVD-2019-11345

Malware in sbrugna...

EUVD-2020-18280

Malware in sbrugna...

EUVD-2022-0908

Malicious code in bioql PyPI...

EUVD-2024-32034

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2024-31144

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - For a brief summary of Xapi terminology, see: https://xapi-project.github.io/xen-api/overview.htmlobject- model-overview Xapi contains functionality to backup a...

Linux Distros Unpatched Vulnerability : CVE-2021-4147

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself and cause libvirtd on the host to deadlock or crash, resulting ...

SUSE CVE-2025-23283

NVIDIA vGPU software for Linux-style hypervisors contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause stack buffer overflow. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information...

CVE-2022-42309

Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong pointer during node creation in an error path, resulting in a crash of xenstored or a memory corruption in xenstored causing further damage. Entering the error path can be...

CVE-2022-42310

Xenstore: Guests can create orphaned Xenstore nodes By creating multiple nodes inside a transaction resulting in an error, a malicious guest can create orphaned nodes in the Xenstore data base, as the cleanup after the error will not remove all nodes already created. When the transaction is...