The Xen has fixed three vulnerabilities in its widely used hypervisor that could allow operating systems running inside virtual machines to the memory of the host systems, breaking the critical layer among them.

Two of the patched vulnerabilities can only be exploited under certain conditions, which limits their use in potential attacks, but one is a highly reliable flaw that poses a serious threat to multitenant centers where the customers217; virtualized servers share the same underlying hardware.

The flaws don’t yet have CVE tracking numbers, but are covered in three Xen security advisories called XSA-213, XSA-214 and XSA-215.

To read this article in full, please click here



Source link

No tags for this post.

LEAVE A REPLY

Please enter your comment!
Please enter your name here