EUVD-2015-0111

Malware in sbrugna...

kernel: kvm: Reachable BUG() on out-of-bounds guest IRQ

A reachable assertion failure flaw was found in the Linux kernel built with KVM virtualisationCONFIGKVM support with Virtual Function I/O feature CONFIGVFIO enabled. This failure could occur if a malicious guest device sent a virtual interrupt guest IRQ with a larger 1024 index value...

Microsoft Windows Hyper-V Information Disclosure Vulnerability

Microsoft Windows is a family of operating systems from Microsoft Corporation, U.S.A. Hyper-V is one of the virtualization products. An information disclosure vulnerability exists in Hyper-V for Microsoft Windows. An attacker can exploit this vulnerability with the help of a specially crafted...

kernel: kvm: pv_eoi guest updates with interrupts disabled

A certain Red Hat patch to the KVM subsystem in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux RHEL 6 does not properly implement the PV EOI feature, which allows guest OS users to cause a denial of service host OS crash by leveraging a time window during which interrup...