HPE Cray Data Virtualization Service(DVS) 安全漏洞

HPE Cray Data Virtualization Service is a distributed network service from HPE. A security vulnerability exists in HPE Cray Data Virtualization Service DVS that stems from vulnerability to unauthorized local or clustered access...

PT-2024-34896 · Hewlett Packard · Hpe Cray Data Virtualization Service

Name of the Vulnerable Software and Affected Versions: HPE Cray Data Virtualization Service DVS affected versions not specified Description: A security issue has been identified in HPE Cray Data Virtualization Service DVS, which may lead to unauthorized access, depending on the configuration. Thi...

The vulnerability of the KVM kernel component of the Linux operating system, which allows a hacker to gain access to confidential information

The vulnerability of the Linux operating system’s KVM kernel component is related to excessive data output in the vmxgetperfcapabilities function. Exploiting this vulnerability can allow an attacker to gain access to confidential information...

CVE-2024-51563 bhyve(8) virtio_vq_recordon time-of-check to time-of-use race

The virtiovqrecordon function is subject to a time-of-check to time-of-use TOCTOU race condition...

Advisory ROSA-SA-2024-2520

Software: device-mapper-multipath 0.8.4 OS: ROSA Virtualization 2.1 packageevrstring: device-mapper-multipath-0.8.4-22 CVE-ID: CVE-2022-41974 BDU-ID: 2022-06669 CVE-Crit: HIGH CVE-DESC.: A vulnerability in multipath-tools multipath-tools driver management software is related to privilege manageme...

kernel: KVM: x86/mmu: Write-protect L2 SPTEs in TDP MMU when clearing dirty status

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Write-protect L2 SPTEs in TDP MMU when clearing dirty status The Linux kernel CVE team has assigned CVE-2024-26990 to this issue. Upstream advisory:...

kernel: x86/mm: Ensure input to pfn_to_kaddr() is treated as a 64-bit type

A vulnerability in the Linux kernel affected the x86/mm code, specifically in the pfntokaddr macro. The issue arises when the macro does not correctly handle input as a 64-bit type, causing crashes on 64-bit platforms, especially for SEV-SNP guests, when processing addresses above the 1TB range...

kernel: KVM: arm64: Fix circular locking dependency

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix circular locking dependency The rule inside kvm enforces that the vcpu-mutex is taken inside kvm-lock. The rule is violated by the pkvmcreatehypvm which acquires the kvm-lock while already holding the vcpu-mutex...

kernel: iommu/vt-d: Fix WARN_ON in iommu probe path

CVE-2024-35957 is a vulnerability in the Linux kernel's Intel Virtualization Technology for Directed I/O VT-d subsystem. The issue stems from an incorrect assumption that each device has a unique source ID, leading to potential conflicts and system warnings during the IOMMU probe process. This fl...

kernel: KVM: arm64: Disassociate vcpus from redistributor region on teardown

A vulnerability was found in the Linux kernel's KVM for ARM64 within the vgic-init.c, vgic-mmio-v3.c, and vgic.h files. The virtual vCPUs may retain dangling pointers in a redistributor region after they have been torn down, leading to potential memory corruption...

kernel: KVM: Always flush async #PF workqueue when vCPU is being destroyed

In the Linux kernel, the following vulnerability has been resolved: KVM: Always flush async PF workqueue when vCPU is being destroyed Always flush the per-vCPU async PF workqueue when a vCPU is clearing its completion queue, e.g. when a VM and all its vCPUs is being destroyed. KVM must ensure tha...

ALSA-2024:9128 Moderate: libvirt security update

Kernel-based Virtual Machine KVM offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the...

Moderate: qemu-kvm security update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fixes: QEMU: SR-IOV: improper validation of NumVFs leads to buffer overflow...

Microsoft Hyper-V 安全漏洞

Microsoft Windows Hyper-V is a virtualization technology developed by Microsoft for creating and managing virtual machines on the Windows operating system, of which the Shared Virtual Disk is one. An elevation of privilege vulnerability exists in Microsoft Windows Hyper-V Shared Virtual Disk, whi...

ALSA-2024:9136 Moderate: qemu-kvm security update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fixes: QEMU: SR-IOV: improper validation of NumVFs leads to buffer overflow...

SUSE CVE-2024-50183

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Ensure DAID handling completion before deleting an NPIV instance Deleting an NPIV instance requires all fabric ndlps to be released before an NPIV's resources can be torn down. Failure to release fabric ndlps beforeha...

rhel bug fix and enhancement update

An update is available for libnbd, qemu-kvm, module.libvirt-python, module.swtpm, module.supermin, libvirt, module.qemu-kvm, module.sgabios, module.nbdkit, swtpm, libtpms, libguestfs, seabios, sgabios, module.libguestfs-winsupport, module.libguestfs, netcf, module.perl-Sys-Virt, module.virt-v2v,...

AZL-54074 CVE-2024-50183 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Ensure DAID handling completion before deleting an NPIV instance Deleting an NPIV instance requires all fabric ndlps to be released before an NPIV's resources can be torn down. Failure to release fabric ndlps beforeha...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper handling of DAID before NPIV instance deletion...

PT-2024-34550 · Open5Gs · Open5Gs

Name of the Vulnerable Software and Affected Versions: Open 5GS version 2.7.1 Description: The issue allows a remote attacker to cause a denial of service via the Network Function Virtualizations NFVs such as the User Plane Function UPF and the Session Management Function SMF, during the Packet...