QSB-115: HVM I/O port list traversal (XSA-491)
29d ago
Source
Qubes OSQSB-115: HVM I/O port list traversal (XSA-491)qubes-os.orgWe have published Qubes Security Bulletin (QSB) 115: HVM I/O port list traversal (XSA-491) . The text of this QSB and its accompanying cryptographic signatures are reproduced below, followed by a general explanation of this announcement and authentication instructions. Qubes Security Bulletin 115 ---===[ Qubes Security Bulletin 115 ]===--- 2026-06-09 HVM I/O port list traversal (XSA-491) User action ------------ Continue to update normally [1] in order to receive the security updates described in the "Patching" section below. No other user action is required in response to this QSB. Summary -------- On 2026-06-09, the Xen Project published XSA-491, "x86 HVM I/O port list traversal" (CVE-2026-42487) [3]
You might also wanna read
Critical Undocumented Authentication Backdoor Found in Multiple Tenda Router Firmware Versions (CVE-2026-11405)
CERT/CC has disclosed a critical vulnerability (CVE-2026-11405) in multiple versions of Tenda firmware, revealing an undocumented authentica
Git Commit Hash Malleability: Attackers Can Forge Verified Signatures Without Access to Signing Keys
This paper demonstrates a critical vulnerability in Git commit signing: an attacker can produce a second, distinct commit with identical tre

The real cost, security, and culture problems behind enterprise AI agents
VentureBeat·9h ago
How to Decrypt ASP.NET View State Messages Using Auto-Generated Machine Keys from the Windows Registry
This article explains how to decrypt encrypted view state messages from compromised ASP.NET web applications. It covers the process of extra
Spear-Phishing Campaign Targets Russian Aerospace Organizations Using AnyDesk and Data Exfiltration Tools
Seqrite reports a spear-phishing campaign targeting Russian aerospace organizations. The attackers impersonate the Russian research institut
hendryadrian.com·11h agoHacked, leaked, and held for ransom: The worst breaches of 2026 so far
TechCrunch·13h ago

Comments
Sign in to join the conversation.
No comments yet. Be the first.