VENOM

Edit links
From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by Deb (talk | contribs) at 12:53, 12 September 2018 (improve wording). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

VENOM (Virtualized Environment Neglected Operations Manipulation) is a computer security flaw that was publicly disclosed in 2015. It was introduced in 2004 and affected versions of QEMU, Xen, KVM, and VirtualBox from that date until it was patched following disclosure.[1][2]

The existence of the vulnerability was due to a flaw in QEMU's virtual floppy disk controller.[3]

References

  1. ^ Whittaker, Zack (May 13, 2015). "Bigger than Heartbleed, 'Venom' security vulnerability threatens most datacenters". Retrieved 11 November 2017.
  2. ^ Dan Goodin (May 14, 2015). "Extremely serious virtual machine bug threatens cloud providers everywhere". Ars Technica. Retrieved 11 November 2017.
  3. ^ Stone, Jeff (May 14, 2015). "Venom Security Flaw: Bug Exploits Floppy Drive, But Researchers Say Threat Overstated". International Business Times. IBT Media. Retrieved 11 November 2017.


Stub icon

This computing article is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=VENOM&oldid=859204183"