12996 matches found
The vulnerability of VMware NSX network virtualization platform, related to insecure management of privileges, allows attackers to escalate their privileges.
The vulnerability of VMware NSX network virtualization platform is related to insecure management of privileges. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...
kernel: xhci: tegra: fix checked USB2 port number
In the Linux kernel, the following vulnerability has been resolved: xhci: tegra: fix checked USB2 port number If USB virtualizatoin is enabled, USB2 ports are shared between all Virtual Functions. The USB2 port number owned by an USB2 root hub in a Virtual Function may be less than total USB2 phy...
kernel: iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count
This CVE has been marked as Rejected by the assigning CNA...
USN-7506-4 linux-lts-xenial vulnerabilities
Demi Marie Obenour and Simon Gaiser discovered that several Xen para- virtualization device frontends did not properly restrict the access rights of device backends. An attacker could possibly use a malicious Xen backend to gain access to memory pages of a guest VM or cause a denial of service in...
USN-7506-4: Linux kernel (Xenial HWE) vulnerabilities
Demi Marie Obenour and Simon Gaiser discovered that several Xen para- virtualization device frontends did not properly restrict the access rights of device backends. An attacker could possibly use a malicious Xen backend to gain access to memory pages of a guest VM or cause a denial of service in...
USN-7506-3: Linux kernel (FIPS) vulnerabilities
Demi Marie Obenour and Simon Gaiser discovered that several Xen para- virtualization device frontends did not properly restrict the access rights of device backends. An attacker could possibly use a malicious Xen backend to gain access to memory pages of a guest VM or cause a denial of service in...
USN-7506-2: Linux kernel (AWS) vulnerabilities
Demi Marie Obenour and Simon Gaiser discovered that several Xen para- virtualization device frontends did not properly restrict the access rights of device backends. An attacker could possibly use a malicious Xen backend to gain access to memory pages of a guest VM or cause a denial of service in...
USN-7506-1: Linux kernel vulnerabilities
Demi Marie Obenour and Simon Gaiser discovered that several Xen para- virtualization device frontends did not properly restrict the access rights of device backends. An attacker could possibly use a malicious Xen backend to gain access to memory pages of a guest VM or cause a denial of service in...
Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-7506-1)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7506-1 advisory. Demi Marie Obenour and Simon Gaiser discovered that several Xen para- virtualization device frontends did not properly restrict the access rights of devi...
Information Leakage Vulnerability in Ruiyou Tianyi Virtual System of Xi'an Ruiyou Information Technology Information Co.
Xi'an Ruiyou Information Technology Co., Ltd. is a professional virtualization and cloud computing solution provider. Xi'an Ruiyou Information Technology Information Co., Ltd Ruiyou Tianyi Virtual System has an information leakage vulnerability, which can be exploited by attackers to obtain...
DEBIAN-CVE-2025-37885
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reset IRTE to host control if new route isn't postable Restore an IRTE back to host control remapped or posted MSI mode if the new GSI route prevents posting the IRQ directly to a vCPU, regardless of the GSI routing typ...
SUSE CVE-2022-49886
In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Panic on bad configs that VE on "private" memory access All normal kernel memory is "TDX private memory". This includes everything from kernel stacks to kernel text. Handling exceptions on arbitrary accesses to kernel...
virt:rhel and virt-devel:rhel security update
An update is available for module.libvirt-dbus, swtpm, module.libvirt, module.nbdkit, netcf, module.libiscsi, virt-v2v, libguestfs, module.virt-v2v, perl-Sys-Virt, module.supermin, sgabios, libvirt-dbus, module.netcf, libnbd, module.qemu-kvm, module.seabios, module.libvirt-python,...
rhel and virt-devel:rhel bug fix and enhancement update
An update is available for module.libvirt-dbus, swtpm, module.libvirt, module.nbdkit, netcf, module.libiscsi, virt-v2v, libguestfs, module.virt-v2v, perl-Sys-Virt, module.supermin, sgabios, libvirt-dbus, module.netcf, libnbd, module.qemu-kvm, module.seabios, module.libvirt-python,...
RLSA-2024:6964 Moderate: virt:rhel and virt-devel:rhel security update
Kernel-based Virtual Machine KVM offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the...
RLSA-2024:0135 Moderate: virt:rhel and virt-devel:rhel security update
Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...
RLSA-2024:4420 Important: virt:rhel and virt-devel:rhel security update
Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...
SUSE CVE-2022-49884
In the Linux kernel, the following vulnerability has been resolved: KVM: Initialize gfntopfncache locks in dedicated helper Move the gfntopfncache lock initialization to another helper and call the new helper during VM/vCPU creation. There are race conditions possible due to kvmgfntopfncacheinit'...
Qemu-kvm: virtio-pci: improper release of configure vector leads to guest triggerable crash
...
Moderate: Red Hat Security Advisory: qemu-kvm security update
An update for qemu-kvm is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...