kernel: KVM: arm64: Tear down vGIC on failed vCPU creation

A use-after-free flaw was found in KVM for arm64 in the Linux Kernel, if the kvmarchvcpucreate fails to share the vCPU page with the hypervisor. This vulnerability could even lead to a kernel information leak problem...

ROS-20260121-73-0015

A vulnerability in the KVM component of the Linux operating system kernel is related to memory initialization errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

CVE-2026-21990

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

CVE-2025-4598 vulnerabilities

Vulnerabilities for packages: linux-qemu, linux-vmware...

Oracle Virtualization security vulnerabilities

Oracle Virtualization is a virtualization solution developed by Oracle, a company in the United States. This product is used for unified management of the entire hardware and software system, from applications to disks, enabling virtualization from desktops to data centers. There are security...

MiracleLinux 7 : qemu-kvm-1.5.3-173.1.0.1.el7.AXS7 (AXSA:2020-075:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-075:01 advisory. QEMU: Slirp: potential OOB access due to unsafe snprintf usages CVE-2020-8608 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-7436:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7436:01 advisory. QEMU: e1000e: heap use-after-free in e1000ewritepackettoguest CVE-2023-3019 Tenable has extracted the preceding description block directly from the...

Oracle Virtualization security vulnerabilities

Oracle Virtualization is a virtualization solution developed by Oracle, a company in the United States. This product is used for the unified management of the entire hardware and software system, from applications to disks, enabling virtualization from desktops to data centers. VM VirtualBox is o...

Oracle Virtualization security vulnerabilities

Oracle Virtualization is a virtualization solution developed by Oracle, a company in the United States. This product is used for unified management of the entire hardware and software system, from applications to disks, enabling virtualization from desktops to data centers. VM VirtualBox is one o...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-8433:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8433:01 advisory. libvirt: negative gnew0 length can lead to unbounded memory allocation CVE-2024-2494 Tenable has extracted the preceding description block directly from the...

Oracle Virtualization security vulnerabilities

Oracle Virtualization is a virtualization solution developed by Oracle, a US-based company. This product is used for unified management of the entire hardware and software system, from applications to disks, enabling virtualization across both desktops and data centers. VM VirtualBox is one of th...

MiracleLinux 9 : libvirt-10.0.0-6.2.el9.ML.1 (AXSA:2024-8065:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8065:03 advisory. The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-8567:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8567:02 advisory. qemu-kvm: QEMU: 'qemu-img info' leads to host file read/write CVE-2024-4467 Tenable has extracted the preceding description block directly from the...

Oracle Virtualization security vulnerabilities

Oracle Virtualization is a virtualization solution developed by Oracle, a company in the United States. This product is used for the unified management of the entire hardware and software system, from applications to disks, enabling virtualization from desktops to data centers. VM VirtualBox is o...

Oracle Virtualization security vulnerabilities

Oracle Virtualization is a virtualization solution developed by Oracle, a US-based company. This product is used for unified management of the entire hardware and software system, from applications to disks, enabling virtualization across both desktops and data centers. VM VirtualBox is one of th...

Oracle Virtualization security vulnerabilities

Oracle Virtualization is a virtualization solution developed by Oracle, a US-based company. This product is used for unified management of the entire hardware and software system, from applications to disks, enabling virtualization across both desktops and data centers. VM VirtualBox is one of th...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2021-1660:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1660:01 advisory. QEMU: Regression of CVE-2020-10756 fix in virt:rhel/qemu-kvm CVE-2021-20295 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-8558:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8558:01 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-7332:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7332:01 advisory. QEMU: hcd-ehci: DMA reentrancy issue leads to use-after-free CVE-2021-3750 QEMU: net: triggerable assertion due to race condition in hot-unplug...

Oracle Virtualization security vulnerabilities

Oracle Virtualization is a virtualization solution developed by Oracle, a US-based company. This product is used for unified management of the entire hardware and software system, from applications to disks, enabling virtualization across both desktops and data centers. VM VirtualBox is one of th...