109 matches found
CVE-2026-23143 virtio_net: Fix misalignment bug in struct virtnet_info
In the Linux kernel, the following vulnerability has been resolved: virtionet: Fix misalignment bug in struct virtnetinfo Use the new TRAILINGOVERLAP helper to fix a misalignment bug along with the following warning: drivers/net/virtionet.c:429:46: warning: structure containing a flexible array...
CVE-2026-23143
In the Linux kernel, the following vulnerability has been resolved: virtionet: Fix misalignment bug in struct virtnetinfo Use the new TRAILINGOVERLAP helper to fix a misalignment bug along with the following warning: drivers/net/virtionet.c:429:46: warning: structure containing a flexible array...
PT-2026-8138
In the Linux kernel, the following vulnerability has been resolved: virtio net: Fix misalignment bug in struct virtnet info Use the new TRAILING OVERLAP helper to fix a misalignment bug along with the following warning: drivers/net/virtio net.c:429:46: warning: structure containing a flexible arr...
Corrupting LLMs Through Weird Generalizations
Fascinating research: Weird Generalization and Inductive Backdoors: New Ways to Corrupt LLMs. Abstract LLMs are useful because they generalize so well. But can you have too much of a good thing? We show that a small amount of finetuning in narrow contexts can dramatically shift behavior outside...
CVE-2021-28707
PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...
EUVD-2015-3328
Malware in sbrugna...
EUVD-2010-0994
Malware in sbrugna...
Agentic Misalignment: How LLMs Could Be Insider Threats
We stress-tested 16 leading models from multiple developers in hypothetical corporate environments to identify potentially risky agentic behaviors before they cause real harm. In the scenarios, we allowed models to autonomously send emails and access sensitive information. They were assigned only...
EUVD-2023-47962
Malicious code in bioql PyPI...
EUVD-2022-35615
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-24198
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smartdns commit 54b4dc was discovered to contain a misaligned address at smartdns/src/util.c. CVE-2024-24198 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2024-24199
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smartdns commit 54b4dc was discovered to contain a misaligned address at smartdns/src/dns.c. CVE-2024-24199 Note that Nessus relies on the presence of the packa...
PT-2025-35963
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the drm/xe/migrate component that could lead to infinite recursion and a potential kernel panic. This occurs when handling memory alignment duri...
Linux Distros Unpatched Vulnerability : CVE-2020-25576
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the randcore crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints. CVE-2020-25576...
Emergent Misalignment As Prompt Sensitivity: a Research Note
Betley et al. 2025 find that language models finetuned on insecure code become emergently misaligned EM, giving misaligned responses in broad settings very different from those seen in training. However, it remains unclear as to why emergent misalignment occurs. We evaluate insecure models across...
Thought Crime: Backdoors and Emergent Misalignment in Reasoning Models
Prior work shows that LLMs finetuned on malicious behaviors in a narrow domain e.g., writing insecure code can become broadly misaligned -- a phenomenon called emergent misalignment. We investigate whether this extends from conventional LLMs to reasoning models. We finetune reasoning models on...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a buffer size not being upwardly aligned, which could lead to out-of-bounds memory accesses...
Security Concerns for Large Language Models: a Survey
Large Language Models LLMs such as GPT-4 and its recent iterations, Google's Gemini, Anthropic's Claude 3 models, and xAI's Grok have caused a revolution in natural language processing, but their capabilities also introduce new security vulnerabilities. In this survey, we provide a comprehensive...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the LoongArch architecture not aligning large page-mapped base addresses...
USN-7370-1 smartdns vulnerabilities
It was discovered that SmartDNS did not correctly align certain objects in memory, leading to undefined behaviour. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. CVE-2024-24198, CVE-2024-24199 It was...