31 matches found
UBUNTU-CVE-2026-45890
In the Linux kernel, the following vulnerability has been resolved: xen-netback: reject zero-queue configuration from guest A malicious or buggy Xen guest can write "0" to the xenbus key "multi-queue-num-queues". The connect function in the backend only validates the upper bound requestednumqueue...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001530)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001530 advisory. An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by...
EUVD-2013-2105
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2021-26930
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provid...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.326.6.el7 - Revert 'md/raid5: Wait for MDSBCHANGEPENDING in raid5d' Junxiao Bi Orabug: 35914789 - md: bypass block throttle for superblock update Junxiao Bi Orabug: 35914789 5.4.17-2136.326.5.el7 - Revert 'tracing: Increase trace array ref count on enable and filter files' Sherry Yang...
K48726314: Linux kernel vulnerability CVE-2013-2140
Security Advisory Description The dispatchdiscardio function in drivers/block/xen-blkback/blkback.c in the Xen blkback implementation in the Linux kernel before 3.10.5 allows guest OS users to cause a denial of service data loss via filesystem write operations on a read-only disk that supports th...
SUSE CVE-2017-10911
The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS or other guest OS kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structure...
Unbreakable Enterprise kernel security update
4.14.35-2047.506.8 - A/A Bonding: devhold/put the delayed GARP work handler's netdev in rdmaip Sharath Srinivasan Orabug: 33187189 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33187192 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33187195 - rds/ib: update...
Unbreakable Enterprise kernel security update
4.14.35-2047.503.1 - bpf, x86: Validate computation of branch displacements for x86-64 Piotr Krysiuk Orabug: 32759961 CVE-2021-29154 - uek-rpm: Add Amazon Elastic Network Adapter module to nano rpm. Somasundaram Krishnasamy Orabug: 32781585 - ext4: handle error of ext4setupsystemzone on remount J...
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9085)
The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9085 advisory. - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492109 CVE-2021-26930 - xen-scsiback: dont 'handle' error by BUG Jan Beulich...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.500.10.el7 - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492110 CVE-2021-26930 - xen-scsiback: don't 'handle' error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 - xen-netback: don't 'handle' error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 -...
Unbreakable Enterprise kernel security update
5.4.17-2036.103.3.1uek - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492109 CVE-2021-26930 - xen-scsiback: don't 'handle' error by BUG Jan Beulich Orabug: 32492101 CVE-2021-26931 - xen-netback: don't 'handle' error by BUG Jan Beulich Orabug: 32492101 CVE-2021-26931 -...
Unbreakable Enterprise kernel security update
4.14.35-2047.500.9.1 - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492110 CVE-2021-26930 - xen-scsiback: dont 'handle' error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 - xen-netback: dont 'handle' error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 -...
Unbreakable Enterprise kernel security update
4.1.12-124.48.3.1 - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492113 CVE-2021-26930 - xen-scsiback: don't 'handle' error by BUG Jan Beulich Orabug: 32492105 CVE-2021-26931 - xen-netback: don't 'handle' error by BUG Jan Beulich Orabug: 32492105 CVE-2021-26931 -...
Unbreakable Enterprise kernel-container security update
5.4.17-2036.102.0.2.el7 - xen-blkback: set ring-xenblkd to NULL after kthreadstop Pawel Wieczorkiewicz Orabug: 32260252 CVE-2020-29569 - xenbus/xenbusbackend: Disallow pending watch messages SeongJae Park Orabug: 32253409 CVE-2020-29568 - xen/xenbus: Count pending messages for each watch SeongJae...
Unbreakable Enterprise kernel security update
5.4.17-2036.102.0.2uek - xen-blkback: set ring-xenblkd to NULL after kthreadstop Pawel Wieczorkiewicz Orabug: 32260252 CVE-2020-29569 - xenbus/xenbusbackend: Disallow pending watch messages SeongJae Park Orabug: 32253409 CVE-2020-29568 - xen/xenbus: Count pending messages for each watch SeongJae...
Use after free triggered by block frontend in Linux blkback
ISSUE DESCRIPTION The Linux kernel PV block backend expects the kernel thread handler to reset ring-xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly toggle between the states connect and disconnect. As a consequence, the block backend may re-use ...
OracleVM 3.4 : Unbreakable / etc (OVMSA-2019-0002)
The remote OracleVM system is missing necessary patches to address critical security updates : - rds: congestion updates can be missed when kernel low on memory Mukesh Kacker Orabug: 28425811 - net/rds: ib: Fix endless RNR Retries caused by memory allocation failures Venkat Venkatsubra Orabug:...
Unbreakable Enterprise kernel security update
4.1.12-124.24.5 - rds: congestion updates can be missed when kernel low on memory Mukesh Kacker Orabug: 28425811 - net/rds: ib: Fix endless RNR Retries caused by memory allocation failures Venkat Venkatsubra Orabug: 28127993 - net: rds: fix excess initialization of the recv SGEs Zhu Yanjun Orabug...
Unbreakable Enterprise kernel security update
4.1.12-124.20.1 - bnxten: xdp: don't make drivers report attachment mode partial backport Somasundaram Krishnasamy Orabug: 27988326 - bpf: make bnxt compatible w/ bpfxdpadjusttail Nikita V. Shirokov Orabug: 27988326 - bnxten: add meta pointer for direct access partial backport Somasundaram...