Lucene search
K

2281 matches found

EUVD
EUVD
added 2026/05/01 2:15 p.m.8 views

EUVD-2026-26594

In the Linux kernel, the following vulnerability has been resolved: drm/ioc32: stop speculation on the drmcompatioctl path The drm compat ioctl path takes a user controlled pointer, and then dereferences it into a table of function pointers, the signature method of spectre problems. Fix this up b...

5.8AI score0.00123EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/01 2:15 p.m.29 views

CVE-2026-31781 drm/ioc32: stop speculation on the drm_compat_ioctl path

In the Linux kernel, the following vulnerability has been resolved: drm/ioc32: stop speculation on the drmcompatioctl path The drm compat ioctl path takes a user controlled pointer, and then dereferences it into a table of function pointers, the signature method of spectre problems. Fix this up b...

0.00123EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013420)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013420 advisory. When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch potentially...

4.7CVSS5.9AI score0.00289EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-010723)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010723 advisory. When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch potentially...

4.7CVSS6.3AI score0.00289EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-006920)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006920 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are...

7.8CVSS5.7AI score0.00165EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.8 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007466)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007466 advisory. In the Linux kernel, the following vulnerability has been resolved: protect the fetch of -fdfd in dodup2 from mispredictions both callers have verified that fd is n...

5.5CVSS6.3AI score0.00281EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.14 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007374)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007374 advisory. A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructio...

6.5CVSS7.1AI score0.03133EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.8 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006742)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006742 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are...

7.8CVSS5.8AI score0.00165EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/25 2:35 p.m.3 views

CVE-2026-23354

A flaw was found in the Linux kernel. This vulnerability affects the handling of speculative execution, a technique used by modern processors to improve performance. A protection mechanism intended to prevent information leakage can be bypassed when its result is temporarily stored in memory,...

3.3CVSS5.7AI score0.00129EPSS
Exploits0References4
OSV
OSV
added 2026/03/25 11:16 a.m.4 views

UBUNTU-CVE-2026-23354

In the Linux kernel, the following vulnerability has been resolved: x86/fred: Correct speculative safety in fredextint arrayindexnospec is no use if the result gets spilled to the stack, as it makes the believed safe-under-speculation value subject to memory predictions. For all practical purpose...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:27 a.m.7 views

CVE-2026-23354

In the Linux kernel, the following vulnerability has been resolved: x86/fred: Correct speculative safety in fredextint arrayindexnospec is no use if the result gets spilled to the stack, as it makes the believed safe-under-speculation value subject to memory predictions. For all practical purpose...

5.7AI score0.00129EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/18 12:0 a.m.63 views

Windows Speculative Execution Configuration Check - Intel BHI (CVE-2022-0001)

Binary data microsoftwindowsspecexecutionCVE-2022-0001.nbin...

6.5CVSS6.6AI score0.00508EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/03/03 11:25 p.m.158 views

pixel-tiktag-exploit

Memory Tagging Extension MTE and Speculative Execution Bypas...

6.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005532)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005532 advisory. In the Linux kernel, the following vulnerability has been resolved: gpio: prevent potential speculation leaks in gpiodevicegetdesc Userspace may trigger a speculativ...

5.5CVSS6.8AI score0.00248EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/16 6:49 a.m.7 views

CVE-2025-71203

In the Linux kernel, the following vulnerability has been resolved: riscv: Sanitize syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use arrayindexnospec to clamp this value after the bounds check to prevent speculative...

7CVSS5.1AI score0.00126EPSS
Exploits0References4
NVD
NVD
added 2026/02/14 5:15 p.m.11 views

CVE-2025-71203

In the Linux kernel, the following vulnerability has been resolved: riscv: Sanitize syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use arrayindexnospec to clamp this value after the bounds check to prevent speculative...

7CVSS0.00126EPSS
Exploits0References4
OSV
OSV
added 2026/02/14 5:15 p.m.7 views

AZL-77757 CVE-2025-71203 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: riscv: Sanitize syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use arrayindexnospec to clamp this value after the bounds check to prevent speculative...

7CVSS5.6AI score0.00126EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/02/14 5:15 p.m.7 views

CVE-2025-71203

In the Linux kernel, the following vulnerability has been resolved: riscv: Sanitize syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use arrayindexnospec to clamp this value after the bounds check to prevent speculative...

7CVSS5.7AI score0.00126EPSS
Exploits0References5
OSV
OSV
added 2026/02/14 5:15 p.m.8 views

UBUNTU-CVE-2025-71203

In the Linux kernel, the following vulnerability has been resolved: riscv: Sanitize syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use arrayindexnospec to clamp this value after the bounds check to prevent speculative...

7CVSS5.7AI score0.00126EPSS
Exploits0References6
OSV
OSV
added 2026/02/14 4:27 p.m.8 views

CVE-2025-71203 riscv: Sanitize syscall table indexing under speculation

In the Linux kernel, the following vulnerability has been resolved: riscv: Sanitize syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use arrayindexnospec to clamp this value after the bounds check to prevent speculative...

7CVSS5.2AI score0.00126EPSS
Exploits0References7
Rows per page
Query Builder