13007 matches found
UBUNTU-CVE-2021-47228
In the Linux kernel, the following vulnerability has been resolved: x86/ioremap: Map EFI-reserved memory as encrypted for SEV Some drivers require memory that is marked as EFI boot services data. In order for this memory to not be re-used by the kernel after ExitBootServices, efimemreserve is use...
UBUNTU-CVE-2021-47389
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: fix missing sevdecommission in sevreceivestart DECOMMISSION the current SEV context if binding an ASID fails after RECEIVESTART. Per AMD's SEV API, RECEIVESTART generates a new guest context and thus needs to be paired...
UBUNTU-CVE-2021-47390
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix stack-out-of-bounds memory access from ioapicwriteindirect KASAN reports the following issue: BUG: KASAN: stack-out-of-bounds in kvmmakevcpusrequestmask+0x174/0x440 kvm Read of size 8 at addr ffffc9001364f638 by tas...
UBUNTU-CVE-2021-47277
In the Linux kernel, the following vulnerability has been resolved: kvm: avoid speculation-based attacks from out-of-range memslot accesses KVM's mechanism for accessing guest memory translates a guest physical address gpa to a host virtual address using the right-shifted gpa also known as gfn an...
CVE-2021-47389 KVM: SVM: fix missing sev_decommission in sev_receive_start
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: fix missing sevdecommission in sevreceivestart DECOMMISSION the current SEV context if binding an ASID fails after RECEIVESTART. Per AMD's SEV API, RECEIVESTART generates a new guest context and thus needs to be paired...
SUSE CVE-2024-35791
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Flush pages under kvm-lock to fix UAF in svmregisterencregion Do the cache flush of converted pages in svmregisterencregion before dropping kvm-lock to fix use-after-free issues where region and/or its array of pages...
SUSE CVE-2024-35981
In the Linux kernel, the following vulnerability has been resolved: virtionet: Do not send RSS key if it is not supported There is a bug when setting the RSS options in virtionet that can break the whole machine, getting the kernel into an infinite loop. Running the following command in any QEMU...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of DECOMMISSION that may cause subsequent SEV boot failures...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that a guest can access an invalid physical address with an invalid gfn...
DEBIAN-CVE-2024-35980
In the Linux kernel, the following vulnerability has been resolved: arm64: tlb: Fix TLBI RANGE operand KVM/arm64 relies on TLBI RANGE feature to flush TLBs when the dirty pages are collected by VMM and the page table entries become write protected during live migration. Unfortunately, the operand...
The vulnerability of the Windows Hyper-V hardware virtualization system allows a attacker to trigger a service failure.
The vulnerability of the Windows Hyper-V hardware virtualization system in Windows operating systems is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to cause a service failure remotely...
The vulnerability of the Windows Hyper-V hardware virtualization system allows a perpetrator to execute arbitrary code.
The vulnerability of the Windows Hyper-V hardware virtualization system in Windows operating systems is related to errors in processing the relative path to the directory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
UBUNTU-CVE-2024-25742
In the Linux kernel before 6.9, an untrusted hypervisor can inject virtual interrupt 29 VC at any point in time and can trigger its handler. This affects AMD SEV-SNP and AMD SEV-ES...
DEBIAN-CVE-2024-35791
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Flush pages under kvm-lock to fix UAF in svmregisterencregion Do the cache flush of converted pages in svmregisterencregion before dropping kvm-lock to fix use-after-free issues where region and/or its array of pages...
EulerOS Virtualization 3.0.6.0 : cups (EulerOS-SA-2024-1676)
According to the versions of the cups packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to...
EulerOS Virtualization 3.0.6.0 : vim (EulerOS-SA-2024-1708)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531. CVE-2023-2609 - Vim is an improved version of the good old...
EulerOS Virtualization 3.0.6.6 : httpd (EulerOS-SA-2024-1653)
According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57...
EulerOS Virtualization 3.0.6.0 : samba (EulerOS-SA-2024-1704)
According to the versions of the samba packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was discovered in Samba, where the flaw allows SMB clients to truncate files, even with read-only permissions when...
EulerOS Virtualization 3.0.6.6 : libX11 (EulerOS-SA-2024-1657)
According to the versions of the libX11 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libX11 due to a boundary condition within the XkbReadKeySyms function. This flaw allows a local user...
EulerOS Virtualization 3.0.6.6 : libXpm (EulerOS-SA-2024-1658)
According to the versions of the libXpm packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer function. This flaw allows...