-
I-CVE-2019-17341 - ukukwazi ukufumana ukufikelela kwinqanaba le-hypervisor ukusuka kwinkqubo yeendwendwe elawulwa ngumhlaseli. Ingxaki ibonakala kuphela kwiinkqubo ze-x86 kwaye inokubangelwa ziindwendwe ezisebenza kwimo ye-paravirotualization (PV) xa isixhobo esitsha sePCI sifakwe kwinkqubo yeendwendwe eqhubayo. Ubuthathaka abubonakali kwiinkqubo zeendwendwe ezisebenza kwiimo ze-HVM kunye ne-PVH; -
I-CVE-2019-17340 -ukuvuza kwememori, okukuvumela ukuba unyuse amalungelo akho okanye ufumane ukufikelela kwidatha kwezinye iinkqubo zeendwendwe.
Ingxaki ibonakala kuphela kwimikhosi engaphezulu kwe-16 TB ye-RAM kwiinkqubo ze-64-bit kunye ne-168 GB kwiinkqubo ze-32-bit.
Ubuthathaka bunokusetyenziswa kuphela kwiinkqubo zeendwendwe kwimodi ye-PV (ubuthathaka abubonakali kwiindlela ze-HVM kunye ne-PVH xa usebenza nge-libxl); -
I-CVE-2019-17346 -ubuthathaka xa usebenzisa i-PCID (Izichongi zomxholo weNkqubo) ukuphucula ukusebenza kokhuseleko kuhlaselo.
I-Meltdown ikuvumela ukuba ufikelele kwidatha evela kwezinye iindwendwe kwaye unokwandisa amalungelo akho. Ubuthathaka bunokusetyenziswa kuphela kwiindwendwe kwimodi ye-PV kwiinkqubo ze-x86 (ingxaki ayenzeki kwiindlela ze-HVM kunye ne-PVH, kunye noqwalaselo olungenazo iindwendwe kunye ne-PCID enikwe amandla (i-PCID ivuliwe ngokungagqibekanga)); -
I-CVE-2019-17342 -Ingxaki ekuphunyezweni kwe XENMEM_exchange hypercall ikuvumela ukuba wandise amalungelo akho kwiindawo ngenkqubo enye yeendwendwe. Ubuthathaka bunokusetyenziswa kuphela kwiinkqubo zeendwendwe kwimodi ye-PV (ubuthathaka abubonakali kwiindlela ze-HVM kunye ne-PVH); -
I-CVE-2019-17343 - imephu engalunganga kwi-IOMMU yenza ukuba kube lula, ukuba kukho ukufikelela kwi-system yeendwendwe kwisixhobo somzimba, ukusebenzisa i-DMA ukutshintsha itafile yephepha lememori kwaye ufumane ukufikelela kwinqanaba lokusingatha. Ukuba sesichengeni kubonakala kuphela kwiinkqubo zeendwendwe kwimo ye-PV ukuba banamalungelo okuhambisa izixhobo ze-PCI.
umthombo: opennet.ru