Lucene search
+L

320 matches found

Rockylinux
Rockylinux
added 2025/07/29 1:38 p.m.18 views

kernel security update

An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

7.1CVSS7.8AI score0.01325EPSS
Exploits0
CNNVD
CNNVD
added 2025/07/28 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a cleanup logic error in the Xen schedop poll hypercall simulation...

5.5CVSS8AI score0.00148EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/06/10 8:11 a.m.7 views

Security update for xen

This update for xen fixes the following issues: CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection ITS XSA-469 bsc1243117 CVE-2024-53241: Fixed Xen hypercall page unsafe against speculative attacks XSA-466 bsc1234282 CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI device...

6.8CVSS8AI score0.00723EPSS
Exploits0References12
OSV
OSV
added 2025/06/10 8:11 a.m.4 views

SUSE-SU-2025:01860-1 Security update for xen

This update for xen fixes the following issues: - CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection ITS XSA-469 bsc1243117 - CVE-2024-53241: Fixed Xen hypercall page unsafe against speculative attacks XSA-466 bsc1234282 - CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI...

7.5CVSS7.3AI score0.00723EPSS
Exploits0References7
OSV
OSV
added 2025/06/10 1:33 a.m.2 views

SUSE-SU-2025:01850-1 Security update for xen

This update for xen fixes the following issues: - CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection ITS XSA-469 bsc1243117 - CVE-2024-53241: Fixed Xen hypercall page unsafe against speculative attacks XSA-466 bsc1234282 - CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI...

7.5CVSS6.9AI score0.00723EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/04/21 12:0 a.m.11 views

AlmaLinux 8 : kernel-rt (ALSA-2025:3894)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:3894 advisory. kernel: xen: Xen hypercall page unsafe against speculative attacks Xen Security Advisory 466 CVE-2024-53241 kernel: ALSA: usb-audio: Fix out of bounds rea...

7.1CVSS7.6AI score0.01325EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/04/16 12:0 a.m.26 views

Oracle Linux 8 : kernel (ELSA-2025-3893)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-3893 advisory. - ALSA: usb-audio: Fix out of bounds reads when finding clock sources Jarod Wilson RHEL-86737 CVE-2024-53150 - x86/xen: remove hypercall page Vitaly...

7.1CVSS7.5AI score0.01325EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/04/15 9:50 a.m.6 views

kernel: xen: Xen hypercall page unsafe against speculative attacks (Xen Security Advisory 466)

In the Linux kernel, the following vulnerability has been resolved: x86/xen: don't do PV iret hypercall through hypercall page Instead of jumping to the Xen hypercall page for doing the iret hypercall, directly code the required sequence in xen-asm.S. This is done in preparation of no longer usin...

5.5CVSS6.8AI score0.00304EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2025/04/11 12:0 a.m.105 views

Unbreakable Enterprise kernel security update

5.15.0-307.178.5 - net/mlx5: DR, prevent potential error pointer dereference Dan Carpenter Orabug: 37434242 CVE-2024-56660 - uek-rpm: Set CONFIGIP6NFIPTABLES for ol9/ol8 container kernels Jonah Palmer Orabug: 37703179 - net: hsr: fix fillframeinfo regression vs VLAN packets Eric Dumazet - f2fs:...

7.8CVSS8AI score0.00288EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/04/04 2:58 a.m.3 views

SUSE CVE-2025-21950

In the Linux kernel, the following vulnerability has been resolved: drivers: virt: acrn: hsm: Use kzalloc to avoid info leak in pmcmdioctl In the "pmcmdioctl" function, three memory objects allocated by kmalloc are initialized by "hcallgetcpustate", which are then copied to user space. The...

5.5CVSS7.6AI score0.00193EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2023-46842

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in particular means that they may set registers used to pass...

6.5CVSS6.7AI score0.0853EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2015-2752

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The XENDOMCTLmemorymapping hypercall in Xen 3.2.x through 4.5.x, when using a PCI passthrough device, is not preemptible, which allows local x86 HVM domain user...

4.9CVSS7.3AI score0.00453EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2017-8903

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xen through 4.8.x on 64-bit platforms mishandles page tables after an IRET hypercall, which might allow PV guest OS users to execute arbitrary code on the host...

8.8CVSS7.7AI score0.0049EPSS
Exploits0References2
OSV
OSV
added 2025/02/27 8:16 p.m.6 views

CVE-2025-21818

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

4.7AI score
Exploits0References1
Cvelist
Cvelist
added 2025/02/27 8:4 p.m.12 views

CVE-2025-21818

...

Exploits0
Debian CVE
Debian CVE
added 2025/02/27 8:4 p.m.8 views

CVE-2025-21818

Removed by vendor...

5AI score
Exploits0
OSV
OSV
added 2025/02/27 3:15 a.m.19 views

UBUNTU-CVE-2025-21779

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reject Hyper-V's SENDIPI hypercalls if local APIC isn't in-kernel Advertise support for Hyper-V's SENDIPI and SENDIPIEX hypercalls if and only if the local API is emulated/virtualized by KVM, and explicitly reject said...

5.5CVSS6.2AI score0.00223EPSS
Exploits0References31
Positive Technologies
Positive Technologies
added 2025/02/27 12:0 a.m.8 views

PT-2025-9009 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been identified, specifically in the xen hypercall hvm function used when running as a Xen PVH guest. This function clobbers the %rbx register,...

6.9AI score
Exploits0References17
SUSE Linux
SUSE Linux
added 2025/01/21 1:58 p.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-41087: Fix double free on error bsc1228466. CVE-2024-53095: smb: client: Fix use-after-free of network namespace bsc1233642. CVE-2024-53146: NFSD: Prevent a...

8.8CVSS8.4AI score0.02033EPSS
Exploits0References108
Tenable Nessus
Tenable Nessus
added 2025/01/17 12:0 a.m.17 views

SUSE SLED15: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2025:0142-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0142-1 advisory. - CVE-2024-53241: Xen hypercall page unsafe against speculative attacks bsc1234282. Bug fixes: - Update t...

5.5CVSS6.8AI score0.00304EPSS
Exploits0References5
Rows per page
Query Builder