Lucene search
K

34 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags TIFs for the task and updates the SPECCTRL MSR in the function speculationctrlupdate, but the IBPB is only issued at the next schedul...

7.5CVSS6.7AI score0.02399EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2026/01/29 12:0 a.m.5 views

openSUSE 15: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2026:0306-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0306-1 advisory. - CVE-2025-58150: Fixed buffer overrun with shadow paging and tracing XSA-477 bsc1256745 - CVE-2026-23553: Fixed incomplete IBPB for vCPU isolation...

8.8CVSS6AI score0.00129EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2025/11/25 4:42 p.m.10 views

kernel: x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.7AI score0.00331EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/25 12:47 a.m.3 views

kernel: x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.7AI score0.00331EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/19 12:47 p.m.10 views

kernel: x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.7AI score0.00331EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/10 1:47 a.m.5 views

kernel: x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.7AI score0.00331EPSS
Exploits0References5
OSV
OSV
added 2025/11/10 12:0 a.m.4 views

ALSA-2025:19931 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: x86/vmscape: Add conditional IBPB mitigation CVE-2025-40300 kernel: mm: fix zswap writeback race condition CVE-2023-53178 kernel: fs: fix UAF/GPF bug in nilfsmdtdestroy CVE-2022-50367 For...

7.8CVSS6.3AI score0.00331EPSS
Exploits0References8
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2025/09/18 12:0 a.m.30 views

Stable Channel Update for ChromeOS / ChromeOS Flex

The ChromeOS Stable channel is being updated to OS version 16371.49.0 Browser version 140.0.7339.201 for most ChromeOS devices. If you find new issues, please let us know one of the following ways: 1. File a bug 2. Visit our ChromeOS communities 1. General: Chromebook Help Community 2. Beta...

9.8CVSS7.7AI score0.05419EPSS
Exploits1
Amazon
Amazon
added 2025/09/15 12:0 a.m.5 views

Important: microcode_ctl

Issue Overview: A potential security vulnerability in some Intelr Processors may allow information disclosure. Intel is releasing microcode updates and prescriptive guidance to mitigate this potential vulnerability. Info:...

7.8CVSS7.3AI score0.00371EPSS
Exploits0
OSV
OSV
added 2025/09/11 5:15 p.m.1 views

DEBIAN-CVE-2025-40300

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.9AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 5:15 p.m.12 views

AZL-67238 CVE-2025-40300 affecting package kernel for versions less than 6.6.112.1-1

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS6AI score0.00331EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/11 4:49 p.m.5 views

CVE-2025-40300 x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

6.5AI score0.00331EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2024-45332

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution in the indirect branch predictors for...

5.7CVSS6.8AI score0.00245EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/07/01 6:51 p.m.4 views

microcode_ctl: From CVEorg collector

A flaw was found in the Branch Prediction Unit BPU of Intel's Lion Core CPUs that make it possible for an attacker to bypass Indirect Branch Predictor Barrier IBPB protections. By employing branch predictor training techniques as described in the "Training Solo" publication, an attacker with loca...

6.8CVSS6.4AI score0.00164EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/01 3:49 p.m.5 views

microcode_ctl: From CVEorg collector

A flaw was found in the Branch Prediction Unit BPU of Intel's Lion Core CPUs that make it possible for an attacker to bypass Indirect Branch Predictor Barrier IBPB protections. By employing branch predictor training techniques as described in the "Training Solo" publication, an attacker with loca...

6.8CVSS6.4AI score0.00164EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/01 3:24 p.m.5 views

microcode_ctl: From CVEorg collector

A flaw was found in the Branch Prediction Unit BPU of Intel's Lion Core CPUs that make it possible for an attacker to bypass Indirect Branch Predictor Barrier IBPB protections. By employing branch predictor training techniques as described in the "Training Solo" publication, an attacker with loca...

6.8CVSS6.4AI score0.00164EPSS
Exploits0References6
Intel
Intel
added 2025/05/27 12:0 a.m.21 views

2025.2 IPU - Intel® Processor Indirect Branch Predictor Advisory

Summary: Potential security vulnerabilities in some Intel® Processor indirect branch predictors may allow information disclosure. Intel is releasing microcode updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2024-43420 Description: Exposure of sensitive...

5.7CVSS5.8AI score0.00245EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/05/16 12:0 a.m.6 views

The vulnerability of the Branch Target Buffer (BTB) and Indirect Branch Predictor (IBP) components of Intel microprogramming devices allows attackers to disclose protected information.

The vulnerabilities of the Branch Target Buffer BTB and Indirect Branch Predictor IBP in Intel microprogramming devices stem from the state of the race within the pipeline. Exploiting these vulnerabilities can allow attackers to disclose protected information by executing specially crafted...

5.6CVSS6.7AI score0.00245EPSS
Exploits0References13Affected Software2
SUSE CVE
SUSE CVE
added 2025/02/14 7:8 a.m.11 views

SUSE CVE-2023-0045

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags TIFs for the task and updates the SPECCTRL MSR on the function speculationctrlupdate, but the IBPB is only issued on the next schedul...

4.7CVSS7AI score0.02399EPSS
Exploits3References29
The Hacker News
The Hacker News
added 2024/10/29 5:53 a.m.41 views

New Research Reveals Spectre Vulnerability Persists in Latest AMD and Intel Processors

More than six years after the Spectre security flaw impacting modern CPU processors came to light, new research has found that the latest AMD and Intel processors are still susceptible to speculative execution attacks. The attack, disclosed by ETH Zürich researchers Johannes Wikner and Kaveh...

5.6CVSS7.4AI score0.74041EPSS
Exploits9
Rows per page
Query Builder