A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 5.3 |
||
linux linux kernel |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 19.04 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 16.04 |
||
canonical ubuntu linux 12.04 |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
fedoraproject fedora 29 |
||
fedoraproject fedora 30 |
||
opensuse leap 15.0 |
||
opensuse leap 15.1 |
||
netapp aff_a700s_firmware - |
||
netapp h410c_firmware - |
||
netapp h610s_firmware - |
||
netapp h300s_firmware - |
||
netapp h500s_firmware - |
||
netapp h700s_firmware - |
||
netapp h300e_firmware - |
||
netapp h500e_firmware - |
||
netapp h700e_firmware - |
||
netapp h410s_firmware - |
||
netapp steelstore cloud integrated storage - |
||
netapp service processor - |
||
netapp data availability services - |
||
netapp solidfire - |
||
netapp hci management node - |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux server aus 7.2 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server tus 7.2 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux server aus 6.6 |
||
redhat enterprise linux server aus 6.5 |
||
redhat enterprise linux for real time 7 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux workstation 6.0 |
||
redhat enterprise linux server tus 7.3 |
||
redhat enterprise linux server aus 7.3 |
||
redhat enterprise linux server aus 7.4 |
||
redhat enterprise linux server tus 7.4 |
||
redhat enterprise linux eus 7.5 |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server aus 7.6 |
||
redhat openshift container platform 3.11 |
||
redhat enterprise linux eus 7.6 |
||
redhat enterprise linux server 7.6 |
||
redhat enterprise linux 8.0 |
||
redhat enterprise linux server aus 7.7 |
||
redhat enterprise linux server tus 7.7 |
||
redhat enterprise linux eus 7.7 |
||
redhat enterprise linux for real time 8 |
||
redhat virtualization 4.0 |
||
redhat virtualization_host 4.0 |
||
huawei manageone 6.5.0 |
||
huawei imanager neteco 6000 v600r008c10spc300 |
||
huawei imanager neteco 6000 v600r008c20 |
||
huawei imanager neteco v600r009c00 |
||
huawei imanager neteco v600r009c10spc200 |
||
huawei manageone 6.5.0.spc100.b210 |
||
huawei manageone 6.5.1rc1.b060 |
||
huawei manageone 6.5.1rc1.b080 |
||
huawei manageone 6.5.rc2.b050 |
Pair of bug reports show how VM escapes put servers at risk
A pair of newly disclosed security flaws could allow malicious virtual machine guests to break out of their hypervisor's walled gardens and execute malicious code on the host box. Both CVE-2019-14835 and CVE-2019-5049 are not particularly easy to exploit as they require specific types of hardware or events to occur. However, if successful, either could allow a miscreant to run malware on the host from a VM instance. CVE-2019-14835 was discovered and reported by Peter Pi, a member of the Tencent ...