Lucene search
K

166 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10, Linux

A known cache speculation vulnerability, known as Branch History Injection BHI or Spectre-BHB, reappears in the new hw AmpereOne. Spectre-BHB is similar to Spectre v2, except that malicious code uses the shared branch history stored in the CPU Branch History Buffer, or BHB to influence mispredict...

5.5CVSS6.7AI score0.00264EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: x86/bhi: Avoid warnings in the DB handler due to BHI mitigation When BHI mitigation is enabled, if SYSENTER is invoked with the TF flag set, then entrySYSENTERcompat uses CLEARBRANCHHISTORY and calls clearbhbloop before the TF fl...

5.5CVSS6.4AI score0.00219EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux, Linux 5.10

Certain Arm Cortex and Neoverse processors, as of 2022-03-08, do not properly prevent cache speculation, also known as Spectre-BHB. Attackers can exploit the shared branch history in the Branch History Buffer BHB to influence mispredicted branches. As a result, cache allocation may allow attacker...

5.6CVSS7AI score0.00495EPSS
Exploits0References2
CVE
CVE
added 2026/05/06 11:28 a.m.19 views

CVE-2026-43261

The CVE-2026-43261 entry concerns the Linux kernel ARM64 arm64: TSV110 Spectre-BHB mitigation. The root cause is Spectre-BHB leakage via branch-prediction side channels on TSV110; mitigation consists of adding the TSV110 MIDR to the software mitigation list in the kernel. Affected component: Linu...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001686)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001686 advisory. Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. An attacker can leverage the shared branch...

5.6CVSS7AI score0.00495EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414298)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414298 advisory. A known cache speculation vulnerability, known as Branch History Injection BHI or Spectre-BHB, becomes actual again for the new hw AmpereOne. Spectre-BHB is similar ...

5.5CVSS6.5AI score0.00264EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.11 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414449)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414449 advisory. Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. An attacker can leverage the shared branch...

5.6CVSS7AI score0.00495EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-43699

Malicious code in bioql PyPI...

5.5CVSS6.7AI score0.00264EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2024-33601

Malicious code in bioql PyPI...

5.1CVSS6.3AI score0.00165EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-30039

Malicious code in bioql PyPI...

5.6CVSS5.9AI score0.00495EPSS
Exploits0References4
OSV
OSV
added 2025/09/18 3:58 p.m.16 views

CLSA-2025-1756482270 kernel: Fix of CVE-2024-2201

spec: up spec/misc to 1160.136.1, spectre mitigation is off by default - hugetlb, mempolicy: fix the mbind hugetlb migration - net: atm: fix use after free in lecsend - net: atlantic: fix aqvec index out of range error - block: initialize flush request via blkmqrqctxinit - ALSA: usb-audio: Fix a...

4.7CVSS7.2AI score0.08555EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-37929

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: arm64: errata: Add missing sentinels to Spectre-BHB MIDR arrays Commit a5951389e58d arm64:...

5.5CVSS5.7AI score0.00161EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/07/11 7:0 a.m.9 views

arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs

...

7CVSS7.2AI score0.00158EPSS
Exploits0
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: arm64: bpf: Added BHB mitigation to the epilogue for cBPF programs. A malicious BPF program may manipulate the branch history to influence what the hardware speculates will happen next. Upon exiting a cBPF program, the BHB...

5.5CVSS6.1AI score0.00158EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/06/08 12:0 a.m.8 views

Exploiting Inaccurate Branch History in Side-Channel Attacks

Modern out-of-order CPUs heavily rely on speculative execution for performance optimization, with branch prediction serving as a cornerstone to minimize stalls and maximize efficiency. Whenever shared branch prediction resources lack proper isolation and sanitization methods, they may originate...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 7:7 a.m.4 views

CVE-2024-10929

In certain circumstances, an issue in Arm Cortex-A57, Cortex-A72 revisions before r1p0, Cortex-A73 and Cortex-A75 may allow an adversary to gain a weak form of control over the victim's branch history...

5.1CVSS6.4AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2025/05/20 4:15 p.m.4 views

DEBIAN-CVE-2025-37948

In the Linux kernel, the following vulnerability has been resolved: arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs A malicious BPF program may manipulate the branch history to influence what the hardware speculates will happen next. On exit from a BPF program, emit the BHB...

5.5CVSS5.5AI score0.00158EPSS
Exploits0References1
OSV
OSV
added 2025/05/20 4:15 p.m.5 views

UBUNTU-CVE-2025-37948

In the Linux kernel, the following vulnerability has been resolved: arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs A malicious BPF program may manipulate the branch history to influence what the hardware speculates will happen next. On exit from a BPF program, emit the BHB...

5.5CVSS6.1AI score0.00158EPSS
Exploits0References36
CVE
CVE
added 2025/05/20 4:1 p.m.115 views

CVE-2025-37948

CVE-2025-37948 affects the Linux kernel arm64 and is fixed by adding a BHB mitigation in the epilogue of BPF programs (cBPF) loaded via seccomp. The vulnerability arises when a classic cBPF program manipulates the branch history to influence speculative execution. The published details indicate t...

5.5CVSS6.6AI score0.00158EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2025/05/20 4:1 p.m.13 views

CVE-2025-37948 arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs

In the Linux kernel, the following vulnerability has been resolved: arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs A malicious BPF program may manipulate the branch history to influence what the hardware speculates will happen next. On exit from a BPF program, emit the BHB...

0.00158EPSS
Exploits0References7
Rows per page
Query Builder