2 matches found
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414492)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414492 advisory. A flaw was found in KVM. When updating a guest's page table entry, vmpgoff was improperly used as the offset to get the page's pfn. As vaddr and vmpgoff are...
kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region
A flaw was found in KVM. When updating a guest's page table entry, vmpgoff was improperly used as the offset to get the page's pfn. As vaddr and vmpgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace region and...