Lucene search
K

13007 matches found

RedHat Linux
RedHat Linux
added 2024/05/01 12:42 a.m.4 views

hw: amd: Instruction raise #VC exception at exit

A vulnerability was found in AMD SEV-SNP, where a malicious hypervisor can potentially break confidentiality and integrity of SEV-SNP on Linux guests by injecting interrupts. An attacker can inject interrupt 0x80, which is used by Linux for legacy 32-bit system calls, and arbitrarily change the...

6.5CVSS6.8AI score0.0018EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/05/01 12:20 a.m.6 views

hw: amd: Instruction raise #VC exception at exit

A vulnerability was found in AMD SEV-SNP, where a malicious hypervisor can potentially break confidentiality and integrity of SEV-SNP on Linux guests by injecting interrupts. An attacker can inject interrupt 0x80, which is used by Linux for legacy 32-bit system calls, and arbitrarily change the...

7.1CVSS6.7AI score0.00247EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/05/01 12:20 a.m.9 views

hw: amd: Instruction raise #VC exception at exit

A vulnerability was found in AMD SEV-SNP, where a malicious hypervisor can potentially break confidentiality and integrity of SEV-SNP on Linux guests by injecting interrupts. An attacker can inject interrupt 0x80, which is used by Linux for legacy 32-bit system calls, and arbitrarily change the...

6.5CVSS6.8AI score0.0018EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2024/04/30 9:48 p.m.39 views

Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to a denial of service due to the use of OpenSSL (CVE-2023-6129)

Summary IBM Virtualization Engine TS7700 is susceptible to a denial of service due to the use of OpenSSL CVE-2023-6129. OpenSSL is used in TS7700 to encrypt data in flight during EKM communications, Secure Data Transfer between clusters, and for TS7700 Advanced Object Store for DS8000...

6.5CVSS7.2AI score0.02323EPSS
Exploits0Affected Software3
RedHat Linux
RedHat Linux
added 2024/04/30 1:33 p.m.41 views

Moderate: Red Hat Security Advisory: libvirt security and bug fix update

An update for libvirt is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

6.2CVSS6.6AI score0.00398EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/04/30 10:42 a.m.28 views

Moderate: Red Hat Security Advisory: libvirt security update

An update for libvirt is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.5CVSS6.4AI score0.0025EPSS
Exploits0References54
RedHat Linux
RedHat Linux
added 2024/04/30 10:36 a.m.3 views

QEMU: improper IDE controller reset can lead to MBR overwrite

A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset to be targeted to offset 0 instead potentially overwriting the VM's boot code. This could be used, for example, by L2 guests with a virtual disk vdiskL2 stored on a virtual disk of an L1 vdiskL1...

7CVSS7.2AI score0.00231EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.4 views

kernel: KVM: nSVM: Check instead of asserting on nested TSC scaling support

In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Check instead of asserting on nested TSC scaling support Check for nested TSC scaling support on nested SVM VMRUN instead of asserting that TSC scaling is exposed to L1 if L1's MSRAMD64TSCRATIO has diverged from KVM's...

5.5CVSS6.8AI score0.00131EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.0 views

kernel: Linux kernel KVM: Denial of Service in nested SVM due to TSC multiplier manipulation

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM nested SVM nSVM module. A local attacker with low privileges in a nested virtual machine can manipulate the Timestamp Counter TSC multiplier and CPUID features. This manipulation can trigger a kernel warning, leading to a...

5.5CVSS5.7AI score0.00143EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.3 views

kernel: Linux kernel igb driver: Denial of Service due to improper SR-IOV cleanup

A flaw was found in the Linux kernel's igb driver. When the igb module is loaded with Single Root I/O Virtualization SR-IOV enabled on certain network adapters, and the SR-IOV initialization subsequently fails, the driver does not properly clean up allocated resources. A local user can exploit th...

5.7AI score0.00155EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.4 views

kernel: KVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost migration

A flaw was found in the Linux kernel's KVM SVM implementation for AMD SEV-ES. During intrahost VM migration, KVM incorrectly retrieves source vCPUs from the destination VM instead of the source VM. This causes the VMSA Virtual Machine Save Area pointer to remain NULL, leading to a host kernel cra...

5.8AI score0.00166EPSS
Exploits0References5
OSV
OSV
added 2024/04/30 12:0 a.m.52 views

ALSA-2024:2135 Moderate: qemu-kvm security update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fixes: QEMU: e1000e: heap use-after-free in e1000ewritepackettoguest CVE-2023-3019...

7CVSS6.4AI score0.01405EPSS
Exploits1References12
OSV
OSV
added 2024/04/30 12:0 a.m.28 views

ALSA-2024:2560 Moderate: libvirt security and bug fix update

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fixes: libvirt: off-by-one error in udevListInterfacesByStatus...

6.2CVSS6.5AI score0.00398EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.43 views

Moderate: libvirt security and bug fix update

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fixes: libvirt: off-by-one error in udevListInterfacesByStatus...

6.2CVSS6.9AI score0.00398EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.32 views

Moderate: libvirt security update

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fixes: libvirt: NULL pointer dereference in...

5.5CVSS6.7AI score0.0025EPSS
Exploits0References4
OSV
OSV
added 2024/04/30 12:0 a.m.28 views

ALSA-2024:2236 Moderate: libvirt security update

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fixes: libvirt: NULL pointer dereference in...

5.5CVSS6AI score0.0025EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.45 views

RHEL 7 / 8 / 9 : OpenShift Virtualization 4.13.6 RPMs (RHSA-2023:7521)

The remote Redhat Enterprise Linux 7 / 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7521 advisory. OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory...

7.5CVSS7.5AI score0.99999EPSS
Exploits19References8
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.28 views

RHEL 7 / 8 / 9 : OpenShift Virtualization 4.13.0 RPMs (RHSA-2023:3204)

The remote Redhat Enterprise Linux 7 / 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3204 advisory. OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory...

7.5CVSS7.2AI score0.05623EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.19 views

RHEL 7 / 8 : OpenShift Virtualization 4.12.5 RPMs (RHSA-2023:4420)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4420 advisory. OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory contains OpenShift...

9.8CVSS7AI score0.01548EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.24 views

RHEL 7 / 8 : OpenShift Virtualization 4.11.0 RPMs (RHSA-2022:6527)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:6527 advisory. OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory contains OpenShift...

7.5CVSS7.7AI score0.03931EPSS
Exploits0References6
Rows per page
Query Builder