Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003241)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003241 advisory. The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS...

EUVD-2017-2549

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2017-10911

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from ho...

PT-2025-8622 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the xen-blkfront component. This issue occurs when a VBD is not fully created and then closed,...

USN-5677-1 linux-gcp, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities

It was discovered that the BPF verifier in the Linux kernel did not properly handle internal data structures. A local attacker could use this to expose sensitive information kernel memory. CVE-2021-4159 It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2...

USN-5572-1 linux-aws vulnerabilities

Roger Pau Monné discovered that the Xen virtual block driver in the Linux kernel did not properly initialize memory pages to be used for shared communication with the backend. A local attacker could use this to expose sensitive information guest kernel memory. CVE-2022-26365 Roger Pau Monné...

Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 5.15.55 and fixes at least the following security issues: There are use-after-free vulnerabilities caused by timer handler in net/rose/rosetimer.c of linux that allow attackers to crash linux kernel without any privileges CVE-2022-2318. Xen Block and Networ...

Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 5.15.55 and fixes at least the following security issues: There are use-after-free vulnerabilities caused by timer handler in net/rose/rosetimer.c of linux that allow attackers to crash linux kernel without any privileges CVE-2022-2318. Xen Block and...

CLSA-2022-1643637294 Fix CVE(s): CVE-2021-38198

CVE-2021-38198 - ELSCVE-686: KVM: MMU: return page fault error code from permissionfault - ELSCVE-686: kvm: x86: MMU support for EPT accessed/dirty bits - ELSCVE-686: KVM: nVMX: fix EPT permissions as reported in exit qualification - ELSCVE-686: KVM: X86: MMU: Use the correct inherited permission...

openSUSE: Security Advisory for qemu (openSUSE-SU-2021:1461-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:1461-1 Rating: important References: 1189234 1189702 1189938 1190425 Cross-References: CVE-2021-3713 CVE-2021-3748 CVSS scores: CVE-2021-3713 SUSE: 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2021-3748...

SUSE: Security Advisory (SUSE-SU-2021:3604-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OPENSUSE-SU-2021:3605-1 Security update for qemu

This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3713: Fix out-of-bounds write in UAS USB Attached SCSI device emulation bsc1189702 - CVE-2021-3748: Fix heap use-after-free in virtionetreceivercu bsc1189938 Non-security issues fixed: - Add transfer length item in...

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:3604-1 Rating: important References: 1189234 1189702 1189938 1190425 Cross-References: CVE-2021-3713 CVE-2021-3748 CVSS scores: CVE-2021-3713 SUSE: 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2021-3748...

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:3605-1 Rating: important References: 1189234 1189702 1189938 1190425 Cross-References: CVE-2021-3713 CVE-2021-3748 CVSS scores: CVE-2021-3713 SUSE: 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2021-3748...

The vulnerability in the driver/block/xen-blkback/blkback.c component of Linux kernel allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the drivers/block/xen-blkback/blkback.c component in Linux operating systems is related to errors in the handling of the blkback resource. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...

SUSE: Security Advisory (SUSE-SU-2015:1384-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-2610-1 : linux-4.19 security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to the execution of arbitrary code, privilege escalation, denial of service, or information leaks. CVE-2020-27170, CVE-2020-27171 Piotr Krysiuk discovered flaws in the BPF subsystem's checks for information leaks throu...

Debian DLA-2586-1 : linux security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2019-19318, CVE-2019-19813, CVE-2019-19816 'Team bobfuzzer' reported bugs in Btrfs that could lead to a use-after-free or heap buffer overflow, and...

PT-2021-3110 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.39 through 5.10.16 Description: An issue was discovered in the Linux kernel, as used in Xen, where block, net, and SCSI backends consider certain errors a plain bug, deliberately causing a kernel crash. This issue...