21 matches found
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003075)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003075 advisory. An issue was discovered in the Linux kernel through 4.17.2. vbgmiscdeviceioctl in drivers/virt/vboxguest/vboxguestlinux.c reads the same user data twice with...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002933)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002933 advisory. An issue was discovered in the Linux kernel through 4.17.2. vbgmiscdeviceioctl in drivers/virt/vboxguest/vboxguestlinux.c reads the same user data twice with...
EUVD-2019-8687
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2018-12633
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel through 4.17.2. vbgmiscdeviceioctl in drivers/virt/vboxguest/vboxguestlinux.c reads the same user data twice with...
SUSE CVE-2018-12633
An issue was discovered in the Linux kernel through 4.17.2. vbgmiscdeviceioctl in drivers/virt/vboxguest/vboxguestlinux.c reads the same user data twice with copyfromuser. The header part of the user data is double-fetched, and a malicious user thread can tamper with the critical variables...
GSD-2022-1005966 vboxguest: Do not use devm for irq
vboxguest: Do not use devm for irq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit f78ac62e6b9d812e692e152dc45f4483725a8811...
GSD-2022-1005778 vboxguest: Do not use devm for irq
vboxguest: Do not use devm for irq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.138 by commit eddb352a807d16682ac73f6e5c2ab0a7fe1c139e...
GSD-2022-1005488 vboxguest: Do not use devm for irq
vboxguest: Do not use devm for irq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by commit 348274a6bb7f8fe460f7c4494077769492e23204...
PT-2022-34224 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 5.4.211 Description: The issue is related to the vboxguest component in the Linux Kernel, where the use of devm for irq is not recommended. The actual impact and attack plausibility have not yet been proven...
PT-2022-34036 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 5.10.138 Description: The issue is related to the use of devm for irq in vboxguest. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to 5.10.13...
GSD-2022-1005102 vboxguest: Do not use devm for irq
vboxguest: Do not use devm for irq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.4 by commit e5cd88146e7907f577d70dd0c64fd8cd78b2a3f9. F...
PT-2022-33360 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.4 Description: The issue is related to the use of devm for irq in vboxguest. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.19.4,...
Linux kernel resource management error vulnerability (CNVD-2019-41701)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A resource management error vulnerability exists in the 'cryptoreportstat' function in the drivers/virt/vboxguest/vboxguestutils.c file in versions of Linux kernel pri...
DEBIAN-CVE-2019-19048
A memory leak in the cryptoreportstat function in drivers/virt/vboxguest/vboxguestutils.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory consumption by triggering copyformuser failures, aka CID-e0b0cb938864...
UBUNTU-CVE-2019-19048
A memory leak in the cryptoreportstat function in drivers/virt/vboxguest/vboxguestutils.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory consumption by triggering copyformuser failures, aka CID-e0b0cb938864...
CVE-2019-19048
A memory leak in the cryptoreportstat function in drivers/virt/vboxguest/vboxguestutils.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory consumption by triggering copyformuser failures, aka CID-e0b0cb938864...
CVE-2019-19048
A memory leak in the cryptoreportstat function in drivers/virt/vboxguest/vboxguestutils.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory consumption by triggering copyformuser failures, aka CID-e0b0cb938864...
DEBIAN-CVE-2018-12633
An issue was discovered in the Linux kernel through 4.17.2. vbgmiscdeviceioctl in drivers/virt/vboxguest/vboxguestlinux.c reads the same user data twice with copyfromuser. The header part of the user data is double-fetched, and a malicious user thread can tamper with the critical variables...
Linux kernel denial of service and information disclosure vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the 'vbgmiscdeviceioctl' function in the drivers/virt/vboxguest/vboxguestlinux.c file in Linux kernel 4.17.2 and earlier versions. A...
CVE-2018-12633
An issue was discovered in the Linux kernel through 4.17.2. vbgmiscdeviceioctl in drivers/virt/vboxguest/vboxguestlinux.c reads the same user data twice with copyfromuser. The header part of the user data is double-fetched, and a malicious user thread can tamper with the critical variables...