34 matches found
EUVD-2020-26035
Malware in sbrugna...
EUVD-2021-7905
Malicious code in bioql PyPI...
EUVD-2023-34856
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2020-4788
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - IBM Power9 AIX 7.1, 7.2, and VIOS 3.1 processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating...
CVE-2023-30438
An internally discovered vulnerability in PowerVM on IBM Power9 and Power10 systems could allow an attacker with privileged user access to a logical partition to perform an undetected violation of the isolation between logical partitions which could lead to data leakage or the execution of...
Design/Logic Flaw
An internally discovered vulnerability in PowerVM on IBM Power9 and Power10 systems could allow an attacker with privileged user access to a logical partition to perform an undetected violation of the isolation between logical partitions which could lead to data leakage or the execution of...
CVE-2023-30438
PowerVM in IBM Power9/Power10 systems contains an internally discovered vulnerability that could allow a privileged user in one logical partition to violate isolation and potentially leak data or execute code in other partitions on the same physical server. Affected component is the PowerVM Hyper...
Oracle Linux 8 : kernel (ELSA-2022-1988)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-1988 advisory. - netfilter: nftablesoffload: incorrect flow offload action array size Florian Westphal 2056728 CVE-2022-25636 - RDMA/cma: Do not change...
AlmaLinux 8 : kernel (ALSA-2022:1988)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:1988 advisory. - In uvcscanchainforward of uvcdriver.c, there is a possible linked list corruption due to an unusual root cause. This could lead to local escalation of...
Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update
An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
kernel security, bug fix, and enhancement update
An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...
RLSA-2022:1988 Important: kernel security, bug fix, and enhancement update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: fget: check that the fd still exists after getting a ref to it CVE-2021-4083 kernel: avoid cyclic entity chains due to malformed USB descriptors CVE-2020-0404 kernel: speculation on...
Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9308)
The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-9308 advisory. - dm ioctl: fix out of bounds array access when no devices Mikulas Patocka Orabug: 32860493 CVE-2021-31916 - powerpc/64s: flush L1D after user accesses...
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9305)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9305 advisory. - dm ioctl: fix out of bounds array access when no devices Mikulas Patocka Orabug: 32860493 CVE-2021-31916 - powerpc/64s: flush L1D after user accesses...
CVE-2021-20487
IBM Power9 Self Boot EngineSBE could allow a privileged user to inject malicious code and compromise the integrity of the host firmware bypassing the host firmware signature verification process...
Code injection
IBM Power9 Self Boot EngineSBE could allow a privileged user to inject malicious code and compromise the integrity of the host firmware bypassing the host firmware signature verification process...
CVE-2021-20487
IBM Power9 Self Boot EngineSBE could allow a privileged user to inject malicious code and compromise the integrity of the host firmware bypassing the host firmware signature verification process...
IBM Power9 Self Boot Engine (SBE) Data Forgery Issue Vulnerability
The IBM Power9 Self Boot Engine is a chip from the American company IBM. A security vulnerability exists in the IBM Power9 Self Boot Engine SBE that could allow a user with appropriate privileges to inject malicious code and compromise the integrity of the host firmware through the host firmware...
IBM Power9 Self Boot Engine(SBE) 数据伪造问题漏洞
The IBM Power9 Self Boot Engine is a chip from the American company IBM. A security vulnerability exists in the IBM Power9 Self Boot Engine SBE that could allow a user with appropriate privileges to inject malicious code and compromise the integrity of the host firmware through the host firmware...
glibc security, bug fix, and enhancement update
2.28-151.0.1.el84 - merge RH patches for ol8-u4 release Review-exception: Patch merge - Provide glibc.pthread.mutexspincount tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag ...