home.social

#vmscape — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #vmscape, aggregated by home.social.

  1. 🐢🎩 Look! ETH Zürich's team of digital wizards just unearthed another mystical attack, VMScape! 💥 But wait—Xen's #microkernel struts around untouched, laughing at its fallen peers KVM and VMware. 🕵️‍♂️ Apparently, the new recipe for security involves adding a sprinkle of "microkernel" and a dash of "not giving a damn." 🤷‍♂️
    virtualize.sh/blog/vmscape-and #ETHZürich #VMScape #cybersecurity #Xen #HackerNews #ngated

  2. Mitigations for #vmscape have been merged to #Linux mainline and included in new stable and longterm #kernel versions released about an hour ago (like 6.16.7 or 6.12.47).

    Vmscape is a vulnerability that essentially takes Spectre-v2 and attacks host userspace from a guest. It particularly affects hypervisors like #QEMU.

    For more details see this #LinuxKernel merge commit git.kernel.org/torvalds/c/223b, the doc changes in contains at git.kernel.org/torvalds/c/9969, or the following page from those that published the vulnerability:

    comsec.ethz.ch/research/microa

    It is tracked as #CVE-2025-40300

    cve.org/CVERecord?id=CVE-2025-

  3. Virtualized environments may no longer be as safe as we thought. The new VMScape vulnerability lets guest systems peek into host data by exploiting shared CPU predictions. How vulnerable is your cloud?

    thedefendopsdiaries.com/vmscap

    #vmscape
    #virtualizationsecurity
    #cloudsecurity
    #cyberthreats
    #amdintelvulnerability

  4. Virtualized environments may no longer be as safe as we thought. The new VMScape vulnerability lets guest systems peek into host data by exploiting shared CPU predictions. How vulnerable is your cloud?

    thedefendopsdiaries.com/vmscap

    #vmscape
    #virtualizationsecurity
    #cloudsecurity
    #cyberthreats
    #amdintelvulnerability

  5. Virtualized environments may no longer be as safe as we thought. The new VMScape vulnerability lets guest systems peek into host data by exploiting shared CPU predictions. How vulnerable is your cloud?

    thedefendopsdiaries.com/vmscap

    #vmscape
    #virtualizationsecurity
    #cloudsecurity
    #cyberthreats
    #amdintelvulnerability