VMware Workstation 安全漏洞

VMware Workstation is a virtual machine software developed by the American company VMware. This software allows for the running of multiple virtual machines with different operating systems simultaneously. VMware Workstation 25H1 and earlier versions have a security vulnerability that stems from...

VMware Workstation 安全漏洞

VMware Workstation is a virtual machine software developed by the American company VMware. This software enables the creation of virtual machines that can run multiple different operating systems simultaneously. VMware Workstation 25H1 and earlier versions have a security vulnerability caused by...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001782)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001782 advisory. Buffer overflow in the macvtap device driver in the Linux kernel before 3.4.5, when running in certain configurations, allows privileged KVM guest users to cause a...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002630)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002630 advisory. The accesspmuevcntr function in arch/arm64/kvm/sysregs.c in the Linux kernel before 4.8.11 allows privileged KVM guest OS users to cause a denial of service assertio...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002567)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002567 advisory. The handleinvept function in arch/x86/kvm/vmx.c in the Linux kernel 3.12 through 3.15 allows privileged KVM guest OS users to cause a denial of service NULL pointer...

RHEL 7 : xen (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - xen: rogue backends can cause DoS of guests via high frequency events CVE-2021-28713 - Rogue backends can...

SUSE CVE-2012-2119

Buffer overflow in the macvtap device driver in the Linux kernel before 3.4.5, when running in certain configurations, allows privileged KVM guest users to cause a denial of service crash via a long descriptor with a long vector length...

SUSE CVE-2016-9913

Memory leak in the v9fsdeviceunrealizecommon function in hw/9pfs/9p.c in QEMU aka Quick Emulator allows local privileged guest OS users to cause a denial of service host memory consumption and possibly QEMU process crash via vectors involving the order of resource cleanup...

SUSE CVE-2016-10155

Memory leak in hw/watchdog/wdti6300esb.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

SUSE CVE-2017-5931

Integer overflow in hw/virtio/virtio-crypto.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service QEMU process crash or possibly execute arbitrary code on the host via a crafted virtio-crypto request, which triggers a heap-based buffer overflow...

UBUNTU-CVE-2017-9373

Memory leak in QEMU aka Quick Emulator, when built with IDE AHCI Emulation support, allows local guest OS privileged users to cause a denial of service memory consumption by repeatedly hot-unplugging the AHCI device...

DEBIAN-CVE-2017-5856

Memory leak in the megasashandledcmd function in hw/scsi/megasas.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption via MegaRAID Firmware Interface MFI commands with the sglist size set to a value over 2 Gb...

UBUNTU-CVE-2017-5526

Memory leak in hw/audio/es1370.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service host memory consumption and QEMU process crash via a large number of device unplug operations...

ALPINE-CVE-2016-10024

Xen through 4.8.x allows local x86 PV guest OS kernel administrators to cause a denial of service host hang or crash by modifying the instruction stream asynchronously while performing certain kernel operations...

PT-2016-3002 · Qemu +3 · Qemu +3

Name of the Vulnerable Software and Affected Versions: QEMU affected versions not specified Description: The issue is related to a memory leak in the v9fs device unrealize common function, which can be exploited by local privileged guest OS users to cause a denial of service. This can lead to hos...

xen: Hypervisor heap contents leaked to guests (xsa-100)

It was found that the Xen hypervisor implementation did not properly clean memory pages previously allocated by the hypervisor. A privileged guest user could potentially use this flaw to read data relating to other guests or the hypervisor itself...

vdsm: incomplete fix for CVE-2013-0167 issue

VDSM in Red Hat Enterprise Virtualization 3 and 3.2 allows privileged guest users to cause the host to become "unavailable to the managment server" via invalid XML characters in a guest agent response. NOTE: this issue is due to an incomplete fix for CVE-2013-0167...

vdsm: unfiltered guestInfo dictionary DoS

VDSM in Red Hat Enterprise Virtualization 3 and 3.2 allows privileged guest users to cause the host to become "unavailable to the managment server" via guestInfo dictionaries with "unexpected fields."...