MiracleLinux 4 : qemu-kvm-0.12.1.2-2.160.AXS4.8 (AXSA:2011-600:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2011-600:02 advisory. KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001286)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001286 advisory. Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002568)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002568 advisory. Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the...

Linux Distros Unpatched Vulnerability : CVE-2022-50851

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vhostvdpa: fix the crash in unmap a large memory While testing in vIOMMU, sometimes Guest will unmap very large memory, which will cause the crash. To fix this,...

kernel: Information disclosure in vhost/vhost.c:vhost_new_msg()

A vulnerability was found in vhostnewmsg in drivers/vhost/vhost.c in the Linux kernel, which does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhostnewmsg function. This issue can allow local privileged users to read...

CLSA-2024-1706617379 Fix of 12 CVEs

Jammy update: v5.15.140 upstream stable release LP: 2050038 // CVE-url: https://ubuntu.com/security/CVE-2024-0607 - netfilter: nftables: fix pointer math issue in nftbyteordereval CVE-url: https://ubuntu.com/security/CVE-2024-0607 - netfilter: nftables: Introduce new 64-bit helper register...

SUSE CVE-2018-1118

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhostnewmsg function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-ne...

kernel: vhost-net: guest to host kernel escape during migration

A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this fla...

UBUNTU-CVE-2018-1118

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhostnewmsg function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-ne...