561 matches found
CVE-2026-43129
In the Linux kernel, the following vulnerability has been resolved: ima: verify the previous kernel's IMA buffer lies in addressable RAM Patch series "Address page fault in imarestoremeasurementlist", v3. When the second-stage kernel is booted via kexec with a limiting command line such as "mem="...
CVE-2026-43129
The CVE-2026-43129 issue stems from the Linux kernel IMA subsystem: when booting a second-stage kernel via kexec with a memory-limited command line, the IMA measurement buffer from the previous kernel could lie outside the new kernel’s addressable RAM, causing an early-page fault on x86_64. The f...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the IMA measurement list buffer exceeding the truncated RAM range during kexec operations,...
PT-2026-37580
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the x86 architecture during the kexec process. When a second-stage kernel is booted using a limiting command line, such as mem=, the physical range containing the...
PT-2026-37469
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists where the Integrity Measurement Architecture IMA measurement buffer passed from a previous kernel may fall outside the addressable RAM of a new kernel when the second-sta...
Linux Distros Unpatched Vulnerability : CVE-2026-43129
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ima: verify the previous kernel's IMA buffer lies in addressable RAM Patch series Address page fault in imarestoremeasurementlist, v3. When the second-stage...
Astra Linux - уязвимость в linux-5.15
In the Linux kernel, the following vulnerability has been resolved: The imagetkexecbuffer function does not check whether the ima-kexec-buffer of the previous kernel lies outside the addressable memory range. This can lead to a kernel panic if the new kernel is booted with the mem=X argument, and...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: kernel/kexec: fixed the issue when the kexec target address is allocated in the CMA area. Description of the bug When I tested kexec with the latest kernel, I encountered the following warning: 40.712410 ------------ cut here ---...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013735)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013735 advisory. In the Linux kernel, the following vulnerability has been resolved: ARM: 9317/1: kexec: Make smp stop calls asynchronous If a panic is triggered by a hrtimer interru...
Unity Linux 20.1050a Security Update: kernel (UTSA-2026-007021)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007021 advisory. In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: clear BM pool before initialization Register value persist after booting the kernel...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011163)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011163 advisory. In the Linux kernel, the following vulnerability has been resolved: ARM: 9317/1: kexec: Make smp stop calls asynchronous If a panic is triggered by a hrtimer interru...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007380)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007380 advisory. In the Linux kernel, the following vulnerability has been resolved: ARM: 9317/1: kexec: Make smp stop calls asynchronous If a panic is triggered by a hrtimer interru...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006790)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006790 advisory. In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: clear BM pool before initialization Register value persist after booting the kernel...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005613)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005613 advisory. In the Linux kernel, the following vulnerability has been resolved: Drivers: vmbus: Check for channel allocation before looking up relids relid2channel assumes vmbus...
Azure Linux 3.0 Security Update: kernel (CVE-2024-42140)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42140 advisory. - In the Linux kernel, the following vulnerability has been resolved: riscv: kexec: Avoid deadlock in kexec...
Azure Linux 3.0 Security Update: kernel (CVE-2024-42230)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42230 advisory. - In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Fix scv instruction cra...
Azure Linux 3.0 Security Update: kernel (CVE-2024-46864)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46864 advisory. - In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: fix kexec crash due to VP...
MiracleLinux 8 : kexec-tools-2.0.20-57.el8 (AXSA:2021-2827:07)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2827:07 advisory. kexec-tools: incorrect permissions on kdump dmesg file CVE-2021-20269 Tenable has extracted the preceding description block directly from the MiracleLinux...
MiracleLinux 3 : kexec-tools-1.102pre-154.0.1.AXS3 (AXSA:2012-274:02)
The remote MiracleLinux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2012-274:02 advisory. kexec-tools provides /sbin/kexec binary that facilitates a new kernel to boot using the kernel's kexec feature either on a normal or a panic reboot...
powerpc/kexec: Enable SMT before waking offline CPUs
...