Lucene search
K

44 matches found

EUVD
EUVD
added 2026/03/04 12:30 p.m.5 views

EUVD-2026-9392

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CPU A, running task ...

6.4CVSS5.9AI score0.00276EPSS
Exploits0References10
OSV
OSV
added 2026/02/20 10:5 a.m.2 views

SUSE-SU-2026:0589-1 Security update for xen

This update for xen fixes the following issues: - CVE-2025-58150: buffer overrun with shadow paging + tracing XSA-477 bsc1256745. - CVE-2026-23553: incomplete IBPB for vCPU isolation XSA-479 bsc1256747...

8.8CVSS6AI score0.00129EPSS
Exploits0References6
OSV
OSV
added 2026/01/30 12:39 a.m.8 views

MGASA-2026-0026 Updated xen packages fix security vulnerabilities

x86: buffer overrun with shadow paging + tracing. CVE-2025-58150 x86: incomplete IBPB for vCPU isolation. CVE-2026-23553...

8.8CVSS6AI score0.00129EPSS
Exploits0References4
OSV
OSV
added 2026/01/28 4:16 p.m.8 views

ALPINE-CVE-2026-23553

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CPU A, running task ...

2.9CVSS5.9AI score0.00129EPSS
Exploits0References1
OSV
OSV
added 2026/01/28 4:16 p.m.4 views

UBUNTU-CVE-2026-23553

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CPU A, running task ...

2.9CVSS5.8AI score0.00129EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/28 3:33 p.m.4 views

CVE-2026-23553

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CPU A, running task ...

2.9CVSS5.9AI score0.00129EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/28 3:33 p.m.36 views

CVE-2026-23553 x86: incomplete IBPB for vCPU isolation

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CPU A, running task ...

0.00129EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/01/28 3:33 p.m.7 views

CVE-2026-23553

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CPU A, running task ...

2.9CVSS5.3AI score0.00129EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/01/28 12:0 a.m.6 views

CVE-2026-23553

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CPU A, running task ...

2.9CVSS5.8AI score0.00129EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/28 12:0 a.m.10 views

Xen security vulnerabilities

Xen is an open-source virtual machine monitor product developed by Xen. This product allows different and incompatible operating systems to run on the same computer. It also supports migration during runtime, ensuring smooth operation and avoiding downtime. Xen has security vulnerabilities; these...

2.9CVSS5.9AI score0.00129EPSS
Exploits0References5
OSV
OSV
added 2026/01/27 4:15 p.m.2 views

SUSE-SU-2026:0306-1 Security update for xen

This update for xen fixes the following issues: - CVE-2025-58150: Fixed buffer overrun with shadow paging and tracing XSA-477 bsc1256745 - CVE-2026-23553: Fixed incomplete IBPB for vCPU isolation XSA-479 bsc1256747...

8.8CVSS5.9AI score0.00129EPSS
Exploits0References5
OSV
OSV
added 2026/01/27 4:14 p.m.4 views

SUSE-SU-2026:0304-1 Security update for xen

This update for xen fixes the following issues: - CVE-2025-58150: Fixed buffer overrun with shadow paging and tracing XSA-477 bsc1256745 - CVE-2026-23553: Fixed incomplete IBPB for vCPU isolation XSA-479 bsc1256747...

8.8CVSS6AI score0.00129EPSS
Exploits0References5
OSV
OSV
added 2026/01/27 4:14 p.m.4 views

SUSE-SU-2026:0303-1 Security update for xen

This update for xen fixes the following issues: Security fixes: - CVE-2025-58150: Fixed buffer overrun with shadow paging and tracing XSA-477 bsc1256745 - CVE-2026-23553: Fixed incomplete IBPB for vCPU isolation XSA-479 bsc1256747 - CVE-2025-58149: Fixed incorrect removal od permissions on PCI...

9.8CVSS6AI score0.00435EPSS
Exploits0References12
Xen Project
Xen Project
added 2026/01/27 12:0 p.m.24 views

x86: incomplete IBPB for vCPU isolation

ISSUE DESCRIPTION In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CP...

2.9CVSS5.9AI score0.00129EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004372)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004372 advisory. A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB Indirect Branch Prediction Barrier. The IBPB mitigation will be disabl...

5.5CVSS6.5AI score0.00368EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004182)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004182 advisory. A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB Indirect Branch Prediction Barrier. The IBPB mitigation will be disabl...

5.5CVSS6.5AI score0.00368EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/08 12:47 a.m.6 views

kernel: x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.7AI score0.00331EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/25 12:37 p.m.8 views

kernel: x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.7AI score0.00331EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/25 10:41 a.m.17 views

kernel: x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.7AI score0.00331EPSS
Exploits0References5
OSV
OSV
added 2025/11/13 9:9 a.m.5 views

RLSA-2025:19932 Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: x86/vmscape: Add conditional IBPB mitigation CVE-2025-40300 kernel: mm: fix zswap writeback race condition CVE-2023-53178 kernel:...

7.3CVSS6.6AI score0.00331EPSS
Exploits0References4
Rows per page
Query Builder