Venom is a virtual machine security flaw uncovered by security firm CrowdStrike that could expose most of the data centers to malware attacks, but in theory. The vulnerability was discovered in the open-source virtualization package QEMU, affecting its Virtual Floppy Disk Controller (FDC) that is being used in many modern virtualization platforms and appliances, including Xen, KVM, Oracle’s VirtualBox, and the native QEMu client. Most of the large cloud providers, including Amazon, Oracle, Citrix, and Rackspace, are not vulnerable to Venom.
Source: https://thehackernews.com/2015/05/venom-vulnerability.html