4th Gen AMD EPYC™ Processors Security Vulnerabilities

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: cilium, kwok, prometheus-nats-exporter, prometheus-adapter, eksctl, gomplate, kubevela, atlantis, local-path-provisioner, kaniko, terragrunt, caddy, metallb, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, trillian, weaviate, volume-modifier-for-k8s,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: wire-go, kwok, bom, prometheus-adapter, eksctl, gomplate, kubevela, local-path-provisioner, nri-elasticsearch, trillian, caddy, docker-credential-ecr-login, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, metallb, aws-flb-firehose, wazero,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: flyte, prometheus-adapter, gomplate, local-path-provisioner, nri-elasticsearch, metallb, ferretdb, prometheus-alertmanager, mongo-tools, prometheus-elasticsearch-exporter, cadvisor, terraform-docs, calico, kubeflow-katib, rabbitmq-messaging-topology-operator, yam,...

CVE-2024-24789 vulnerabilities

Vulnerabilities for packages: flyte, prometheus-adapter, gomplate, local-path-provisioner, pluto, nri-elasticsearch, metallb, grafana-mimir, ferretdb, prometheus-alertmanager, mongo-tools, prometheus-elasticsearch-exporter, cadvisor, terraform-docs, kubeflow-katib,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: helm-push, falco, render-template, kubernetes-dashboard-metrics-scraper, local-path-provisioner, protoc-gen-go-grpc, go-md2man, k3d, docker-credential-ecr-login, prometheus-bind-exporter, aws-flb-cloudwatch, sbom-scorecard, aws-flb-firehose, ip-masq-agent,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: cilium, kwok, prometheus-nats-exporter, prometheus-adapter, eksctl, gomplate, kubevela, atlantis, local-path-provisioner, kaniko, terragrunt, caddy, metallb, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, trillian, weaviate, volume-modifier-for-k8s,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: wire-go, kwok, bom, prometheus-adapter, eksctl, gomplate, kubevela, local-path-provisioner, nri-elasticsearch, trillian, caddy, docker-credential-ecr-login, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, metallb, aws-flb-firehose, wazero,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: wire-go, kwok, bom, prometheus-adapter, eksctl, gomplate, kubevela, local-path-provisioner, nri-elasticsearch, trillian, caddy, docker-credential-ecr-login, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, metallb, aws-flb-firehose, wazero,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: flyte, prometheus-adapter, gomplate, local-path-provisioner, nri-elasticsearch, metallb, ferretdb, prometheus-alertmanager, mongo-tools, prometheus-elasticsearch-exporter, cadvisor, terraform-docs, calico, kubeflow-katib, rabbitmq-messaging-topology-operator, yam,...

CVE-2024-24790 vulnerabilities

Vulnerabilities for packages: flyte, prometheus-adapter, gomplate, local-path-provisioner, pluto, nri-elasticsearch, metallb, grafana-mimir, ferretdb, prometheus-alertmanager, mongo-tools, prometheus-elasticsearch-exporter, cadvisor, terraform-docs, kubeflow-katib,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: wire-go, kwok, bom, prometheus-adapter, eksctl, gomplate, kubevela, local-path-provisioner, nri-elasticsearch, trillian, caddy, docker-credential-ecr-login, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, metallb, aws-flb-firehose, wazero,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: wire-go, kwok, bom, prometheus-adapter, eksctl, gomplate, kubevela, local-path-provisioner, nri-elasticsearch, trillian, caddy, docker-credential-ecr-login, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, metallb, aws-flb-firehose, wazero,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: wire-go, kwok, bom, prometheus-adapter, eksctl, gomplate, kubevela, local-path-provisioner, nri-elasticsearch, trillian, caddy, docker-credential-ecr-login, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, metallb, aws-flb-firehose, wazero,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: helm-push, falco, render-template, kubernetes-dashboard-metrics-scraper, local-path-provisioner, protoc-gen-go-grpc, go-md2man, k3d, docker-credential-ecr-login, prometheus-bind-exporter, aws-flb-cloudwatch, sbom-scorecard, aws-flb-firehose, ip-masq-agent,...

GHSA-49GW-VXVF-FC2G vulnerabilities

Vulnerabilities for packages: flyte, prometheus-adapter, gomplate, local-path-provisioner, pluto, nri-elasticsearch, metallb, grafana-mimir, ferretdb, prometheus-alertmanager, mongo-tools, prometheus-elasticsearch-exporter, cadvisor, terraform-docs, kubeflow-katib,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: helm-push, falco, render-template, kubernetes-dashboard-metrics-scraper, local-path-provisioner, protoc-gen-go-grpc, go-md2man, k3d, docker-credential-ecr-login, prometheus-bind-exporter, aws-flb-cloudwatch, sbom-scorecard, aws-flb-firehose, ip-masq-agent,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: helm-push, falco, render-template, kubernetes-dashboard-metrics-scraper, local-path-provisioner, protoc-gen-go-grpc, go-md2man, k3d, docker-credential-ecr-login, prometheus-bind-exporter, aws-flb-cloudwatch, sbom-scorecard, aws-flb-firehose, ip-masq-agent,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: wire-go, kwok, bom, prometheus-adapter, eksctl, gomplate, kubevela, local-path-provisioner, nri-elasticsearch, trillian, caddy, docker-credential-ecr-login, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, metallb, aws-flb-firehose, wazero,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: wire-go, kwok, bom, prometheus-adapter, eksctl, gomplate, kubevela, local-path-provisioner, nri-elasticsearch, trillian, caddy, docker-credential-ecr-login, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, metallb, aws-flb-firehose, wazero,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: wire-go, kwok, bom, prometheus-adapter, eksctl, gomplate, kubevela, local-path-provisioner, nri-elasticsearch, trillian, caddy, docker-credential-ecr-login, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, metallb, aws-flb-firehose, wazero,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: wire-go, kwok, bom, prometheus-adapter, eksctl, gomplate, kubevela, local-path-provisioner, nri-elasticsearch, trillian, caddy, docker-credential-ecr-login, gatekeeper, kubernetes-csi-livenessprobe, argo-cd, filebeat, metallb, aws-flb-firehose, wazero,...

GHSA-236W-P7WF-5PH8 vulnerabilities

Vulnerabilities for packages: flyte, prometheus-adapter, gomplate, local-path-provisioner, pluto, nri-elasticsearch, metallb, grafana-mimir, ferretdb, prometheus-alertmanager, mongo-tools, prometheus-elasticsearch-exporter, cadvisor, terraform-docs, kubeflow-katib,...

CVE-2024-36969

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix division by zero in setup_dsc_config When slice_height is 0, the division by slice_height in the calculation of the number of slices will cause a division by zero driver crash. This leaves the kernel in a...

CVE-2023-46103

A flaw was found in intel-microcode. The sequence of processor instructions leads to unexpected behavior in Intel(R) Core(TM) Ultra processors that may allow an authenticated user to enable a denial of service via local access. Mitigation Mitigation for this issue is either not available or the...

CVE-2023-45733

A flaw was found in intel-microcode. The hardware logic contains race conditions in some Intel(R) processors that may allow an authenticated user to enable partial information disclosure via local access. Mitigation Mitigation for this issue is either not available or the currently available...

Apple TV < 19K53 Multiple Vulnerabilities (HT212980)

According to its banner, the version of Apple TV on the remote device is prior to 19K53. It is therefore affected by multiple vulnerabilities as described in the...

Apple TV < 15.5 Multiple Vulnerabilities (HT213254)

According to its banner, the version of Apple TV on the remote device is prior to 15.5. It is therefore affected by multiple vulnerabilities as described in the...

Apple TV < 16.3 Multiple Vulnerabilities (HT213601)

According to its banner, the version of Apple TV on the remote device is prior to 16.3. It is therefore affected by multiple vulnerabilities as described in the...

SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2019-1)

The remote SUSE Linux SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2019-1 advisory. The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following...

SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2008-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2008-1 advisory. The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were...

Microsoft Issues Patches for 51 Flaws, Including Critical MSMQ Vulnerability

Microsoft has released security updates to address 51 flaws as part of its Patch Tuesday updates for June 2024. Of the 51 vulnerabilities, one is rated Critical and 50 are rated Important. This is in addition to 17 vulnerabilities resolved in the Chromium-based Edge browser over the past month....

CVE-2023-52753

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference of timing generator [Why & How] Check whether assigned timing generator is NULL or not before accessing its funcs to prevent NULL...

CVE-2023-52738

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/fence: Fix oops due to non-matching drm_sched init/fini Currently amdgpu calls drm_sched_fini() from the fence driver sw fini routine - such function is expected to be called only after the respective init function -...

RHEL 8 : kernel (RHSA-2024:3810)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3810 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: use-after-free in...

Unbreakable Enterprise kernel security update

[5.15.0-207.156.6] - uek-container: Add advanced routing options (Boris Ostrovsky) [Orabug: 36691279] - slub: use count_partial_free_approx() in slab_out_of_memory() (Jianfeng Wang) [Orabug: 36655468] - slub: introduce count_partial_free_approx() (Jianfeng Wang) [Orabug: 36655468] - Revert...

Ubuntu: Security Advisory (USN-6828-1)

The remote host is missing an update for...

Security Bulletin: IBM® Db2® is vulnerable to a denial of service as a trap may occur when selecting from certain types of tables. (CVE-2023-29267)

Summary IBM® Db2® is vulnerable to a denial of service as a trap may occur when selecting from certain types of tables. Vulnerability Details ** CVEID: CVE-2023-29267 DESCRIPTION: **IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to a denial of service as a trap...

linux-intel-iotg-5.15 vulnerabilities

Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A physically proximate attacker could possibly use this to cause a denial of service (system crash). (CVE-2023-47233) It was....

Security Bulletin: IBM® Db2® is vulnerable to a denial of service as the server may crash when using a specially crafted query on certain columnar tables. (CVE-2024-31881)

Summary IBM® Db2® is vulnerable to a denial of service as the server may crash when using a specially crafted query on certain columnar tables by an authenticated user. Vulnerability Details ** CVEID: CVE-2024-31881 DESCRIPTION: **IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)...

Security Bulletin: IBM® Db2® is vulnerable to a denial of service as the server may crash when using a specially crafted statement. (CVE-2024-31880)

Summary IBM® Db2® is vulnerable to a denial of service, under specific configurations, as the server may crash when using a specially crafted SQL statement by an authenticated user. Vulnerability Details ** CVEID: CVE-2024-31880 DESCRIPTION: **IBM Db2 for Linux, UNIX and Windows (includes Db2...

Security Bulletin: IBM® Db2® federated server is affected by vulnerabilities in the open source commons-configuration2 library. (CVE-2024-29131, CVE-2024-29133)

Summary IBM® Db2® federated server is affected by vulnerabilities in the open source commons-configuration2 library when using the NoSQL Hadoop wrapper. Vulnerability Details ** CVEID: CVE-2024-29131 DESCRIPTION: **Apache Commons Configuration could allow a remote attacker to execute arbitrary...

Exploit for Deserialization of Untrusted Data in Clear Clearml

How it works- Need access to the team work space...

Exploit for Deserialization of Untrusted Data in Clear Clearml

How it works- Need access to the team work space...

Security Bulletin: IBM® Db2® NSE (Net Search Extender) is affected by a vulnerability in the open source Expat library. (CVE-2024-28757)

Summary IBM® Db2® NSE (Net Search Extender) is affected by a vulnerability in the open source Expat library. Vulnerability Details ** CVEID: CVE-2024-28757 DESCRIPTION: **libexpat could allow a remote attacker to obtain sensitive information, caused by improper handling of XML external entity...

Security Bulletin: IBM® Db2® is vulnerable to a denial of service with a specially crafted query under certain conditions. (CVE-2024-28762)

Summary IBM® Db2® is vulnerable to a denial of service with a specially crafted query under certain conditions. Vulnerability Details ** CVEID: CVE-2024-28762 DESCRIPTION: **IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) is vulnerable to denial of service with a specially...

Security Bulletin: IBM® Db2® is affected by a vulnerability in the open source zlib library. (CVE-2023-45853)

Summary IBM® Db2® is affected by a vulnerability in the open source zlib library. Vulnerability Details ** CVEID: CVE-2023-45853 DESCRIPTION: **MiniZip is vulnerable to a denial of service, caused by an integer overflow and resultant heap-based buffer overflow in the zipOpenNewFileInZip4_64...

AMD SPI Lock Bypass June 2024 Security Update

AMD has informed HP of a potential weakness in AMD SPI protection features, which might allow arbitrary code execution. AMD is releasing firmware updates and HP is enabling AMD ROM Armor to mitigate these vulnerabilities. AMD has released updates to mitigate the potential vulnerability. HP has...

Ubuntu 20.04 LTS : Linux kernel (Intel IoTG) vulnerabilities (USN-6828-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6828-1 advisory. Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use-...

CVE-2024-36969

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix division by zero in setup_dsc_config When slice_height is 0, the division by slice_height in the calculation of the number of slices will cause a division by zero driver crash. This leaves the kernel in a...

Intel 2024.2 IPU - BIOS May 2024 Security Update

Intel has informed HP of potential security vulnerabilities in some Intel® Processors, which might allow information disclosure and/or denial of service. Intel is releasing microcode updates to mitigate the potential vulnerabilities. Intel has released updates to mitigate the potential...