Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS : QEMU vulnerabilities (USN-8412-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8412-1 advisory. Felipe Franciosi, Raphael Norwitz, and Peter Turschmid discovered that the iSCSI block driver in QEMU incorrectly...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

A flaw was discovered in the Linux kernel’s NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packets when using NVMe over TCP. This can lead to the NVMe driver dereferencing a NULL pointer, resulting in kernel panic and a denial of service...

systemd security update

257-13.0.1.el101.3 - Fix detection of Oracle Virtualization or BM envs Orabug: 37531877 - Avoid udevadm warnings when using udev valid configs Orabug: 37503197 - allow dm remove ioctl to co-operate with UEK3 Orabug: 18467469 - set 'RemoveIPC=no' in logind.conf as default Orabug: 22224874 - Fix...

CVE-2025-49760

External control of file name or path in Windows Storage allows an authorized attacker to perform spoofing over a network...

Broadcom SANnav 安全漏洞

Broadcom SANnav is a suite of SAN management platforms from Broadcom Corporation USA. A security vulnerability exists in Broadcom SANnav versions prior to 2.2.2, which stems from the presence of information disclosure through a log file vulnerability, where configuration secrets are recorded in...

High Availability Behavior When the Heartbeat is Lost in a XenServer Pool

This article describes High Availability HA behavior in situations when the heartbeat is lost on XenServer 5.x. HA does not check the link state of the interfaces. It rather works on the bases of HA Host Groups and Network Partitions. HA Daemon chooses the larger of the network partitions to take...

UBUNTU-CVE-2021-27363

An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsitransport structure. When an iSCSI transport is registered with the iSCSI subsystem, the transport's handle is available to unprivileged users via the sysfs file...

QEMU Buffer Overflow Vulnerability (CNVD-2020-10714)

QEMU Quick Emulator is a set of simulation processor software by French software developer Fabrice Bellard. The software is fast, cross-platform and other characteristics. A buffer overflow vulnerability exists in the iSCSI Block driver in version 2.12.0 prior to QEMU 4.2.1. The vulnerability...

The vulnerability of the ScaleIO debugging storage network service of EMC allows a hacker to execute arbitrary commands.

The vulnerability of the EMC ScaleIO Storage Network Debugging service SDBG is caused by buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with root privileges remotely...

How to Verify the Maximum Transmission Unit For a Given Network Path

When implementing jumbo frames for storage it is important to verify what the actual Maximum Transmission Unit MTU is for the path between your host and storage unit. The steps included in this document will return a quantitative value unique to the given environment...