SUSE CVE-2021-20269

A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a local unprivileged user to read this file and leak kernel internal information from a previous panic. The highest threat from this vulnerability is to confidentiality. This flaw affects kexec-tools shippe...

SUSE CVE-2022-21505

In the linux kernel, if IMA appraisal is used with the "imaappraise=log" boot param, lockdown can be defeated with kexec on any machine when Secure Boot is disabled or unavailable. IMA prevents setting "imaappraise=log" from the boot param when Secure Boot is enabled, but this does not cover case...

SUSE CVE-2022-42330

Guests can cause Xenstore crash via soft reset When a guest issues a "Soft Reset" e.g. for performing a kexec the libxl based Xen toolstack will normally perform a XSRELEASE Xenstore operation. Due to a bug in xenstored this can result in a crash of xenstored. Any other use of XSRELEASE will have...

Unbreakable Enterprise kernel-container security update

5.4.17-2136.316.7 - runtime revert of virtionet: Stripe queue affinities across cores. Konrad Rzeszutek Wilk Orabug: 35001045 5.4.17-2136.316.6 - block: Change the granularity of io ticks from ms to ns Gulam Mohamed Orabug: 34780807 - powercap: intelrapl: support new layout of Psys PowerLimit...

ALPINE-CVE-2022-42330

Guests can cause Xenstore crash via soft reset When a guest issues a "Soft Reset" e.g. for performing a kexec the libxl based Xen toolstack will normally perform a XSRELEASE Xenstore operation. Due to a bug in xenstored this can result in a crash of xenstored. Any other use of XSRELEASE will have...

PT-2025-53057

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the MediaTek mtk-svs driver. Specifically, if the system boots without a full reset such as via kexec, a peripheral might trigger an interrup...

GSD-2023-1000866 x86/kexec: Fix double-free of elf header buffer

x86/kexec: Fix double-free of elf header buffer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.87 by commit...

GSD-2023-1000464 iommu/mediatek: Fix crash on isr after kexec()

iommu/mediatek: Fix crash on isr after kexec This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.17 by commit...

GSD-2023-1000451 RISC-V: kexec: Fix memory leak of fdt buffer

RISC-V: kexec: Fix memory leak of fdt buffer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit...

GSD-2023-1000450 RISC-V: kexec: Fix memory leak of elf header buffer

RISC-V: kexec: Fix memory leak of elf header buffer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit...

GSD-2023-1000392 x86/kexec: Fix double-free of elf header buffer

x86/kexec: Fix double-free of elf header buffer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.19 by commit...

PT-2023-33541 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.17 Description: The issue is related to a potential crash on isr after kexec in the iommu/mediatek component. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...

PT-2023-33469 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.19 Description: The issue is related to a double-free of the elf header buffer in the x86/kexec component. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kern...

PT-2023-33527 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.18 Description: A memory leak issue has been identified, related to the elf header buffer in kexec for RISC-V. The actual impact and potential for attack have not been fully determined. Recommendations: For...

PT-2025-53223

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the handling of the ELF header buffer during kexec. Specifically, a superfluous vfree call within the crash load segments function's error pa...

Huawei EulerOS: Security Advisory for kexec-tools (EulerOS-SA-2022-2907)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for kexec-tools (EulerOS-SA-2022-2933)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Malicious code in node-kexec (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c935f2cf93a69d3611bc002c76fb751088ccfda5985581797976d42dc55ce94 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-4887 Malicious code in node-kexec (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c935f2cf93a69d3611bc002c76fb751088ccfda5985581797976d42dc55ce94 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

EulerOS Virtualization 2.10.1 : kexec-tools (EulerOS-SA-2022-2933)

According to the versions of the kexec-tools package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a local unprivileged user to read...