Lucene search
K

40 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Viawdt: fixed a critical boot hang caused by unnamed resource allocation. The VIA watchdog driver uses allocateresource to reserve a MMIO region for the watchdog control register. However, the allocated resource was not given a...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Qemu

A reentrancy issue related to DMA was discovered in the USB EHCI controller emulation of QEMU. EHCI does not verify whether the Buffer Pointer overlaps with its MMIO region when transferring USB packets. Crafted content may be written to the controller’s registers, potentially triggering...

8.2CVSS7AI score0.0053EPSS
Exploits1References2
NVD
NVD
added 2026/01/14 3:16 p.m.6 views

CVE-2025-71114

In the Linux kernel, the following vulnerability has been resolved: viawdt: fix critical boot hang due to unnamed resource allocation The VIA watchdog driver uses allocateresource to reserve a MMIO region for the watchdog control register. However, the allocated resource was not given a name, whi...

5.5CVSS0.00123EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/01/14 3:16 p.m.6 views

CVE-2025-71114

In the Linux kernel, the following vulnerability has been resolved: viawdt: fix critical boot hang due to unnamed resource allocation The VIA watchdog driver uses allocateresource to reserve a MMIO region for the watchdog control register. However, the allocated resource was not given a name, whi...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References35
OSV
OSV
added 2026/01/14 3:16 p.m.7 views

UBUNTU-CVE-2025-71114

In the Linux kernel, the following vulnerability has been resolved: viawdt: fix critical boot hang due to unnamed resource allocation The VIA watchdog driver uses allocateresource to reserve a MMIO region for the watchdog control register. However, the allocated resource was not given a name, whi...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References37
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-2560

Malware in sbrugna...

7.5CVSS8.3AI score0.02008EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/08/16 12:0 a.m.18 views

CBL Mariner 2.0 Security Update: kernel (CVE-2010-0298)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2010-0298 advisory. - The x86 emulator in KVM 83 does not use the Current Privilege Level CPL and I/O Privilege Level IOPL in...

6.5CVSS5.5AI score0.02416EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/06/07 12:0 a.m.6 views

The vulnerability of the QEMU hardware emulation software, related to memory-related errors, allows a hacker to trigger a system failure.

The vulnerability of the QEMU hardware emulation software lies in the lack of checks to ensure that the buffer pointer does not overlap with the MMIO region during USB packet transmission. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.5CVSS6.8AI score0.0053EPSS
Exploits1References12Affected Software3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.24 views

RHEL 5 : xsa224_xen (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - xsa224 xen: grant table operations mishandle reference counts XSA-224 CVE-2017-10921 - The grant-table...

8.9AI score0.02549EPSS
Exploits0References3
OSV
OSV
added 2024/04/10 7:15 p.m.4 views

UBUNTU-CVE-2021-47205

In the Linux kernel, the following vulnerability has been resolved: clk: sunxi-ng: Unregister clocks/resets when unbinding Currently, unbinding a CCU driver unmaps the device's MMIO region, while leaving its clocks/resets and their providers registered. This can cause a page fault later when some...

5.5CVSS6.2AI score0.00196EPSS
Exploits0References5
Prion
Prion
added 2024/02/27 7:15 a.m.16 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix wq cleanup of WQCFG registers A pre-release silicon erratum workaround where wq reset does not clear WQCFG registers was leaked into upstream code. Use wq reset command instead of blasting the MMIO region. Th...

7.2AI score0.00225EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/27 6:53 a.m.21 views

CVE-2021-46917 dmaengine: idxd: fix wq cleanup of WQCFG registers

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix wq cleanup of WQCFG registers A pre-release silicon erratum workaround where wq reset does not clear WQCFG registers was leaked into upstream code. Use wq reset command instead of blasting the MMIO region. Th...

5.7AI score0.00225EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/02/27 6:53 a.m.22 views

CVE-2021-46917 dmaengine: idxd: fix wq cleanup of WQCFG registers

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix wq cleanup of WQCFG registers A pre-release silicon erratum workaround where wq reset does not clear WQCFG registers was leaked into upstream code. Use wq reset command instead of blasting the MMIO region. Th...

6.9AI score0.00225EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2023/03/03 8:0 a.m.5 views

afu_mmio_region_get_by_offset in drivers/fpga/dfl-afu-region.c in the Linux kernel through 6.1.12 has an integer overflow.

...

7.8CVSS7.3AI score0.0024EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/22 2:54 a.m.1 views

SUSE CVE-2023-26242

afummioregiongetbyoffset in drivers/fpga/dfl-afu-region.c in the Linux kernel through 6.1.12 has an integer overflow...

7.8CVSS6.9AI score0.0024EPSS
Exploits0References3
OSV
OSV
added 2023/02/21 1:15 a.m.3 views

UBUNTU-CVE-2023-26242

afummioregiongetbyoffset in drivers/fpga/dfl-afu-region.c in the Linux kernel through 6.1.12 has an integer overflow...

7.8CVSS6.9AI score0.0024EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:0 a.m.4 views

SUSE CVE-2010-0298

The x86 emulator in KVM 83 does not use the Current Privilege Level CPL and I/O Privilege Level IOPL in determining the memory access available to CPL3 code, which allows guest OS users to cause a denial of service guest OS crash or gain privileges on the guest OS by leveraging access to a 1 IO...

6.5CVSS7.1AI score0.02416EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:0 a.m.5 views

SUSE CVE-2010-0306

The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing SMP, does not use the Current Privilege Level CPL and I/O Privilege Level IOPL to restrict instruction execution, which allows guest OS users to cause a denial of service guest OS crash or gain privileges on the...

4.1CVSS7AI score0.00382EPSS
Exploits0References3
OSV
OSV
added 2022/05/28 11:3 a.m.3 views

OESA-2022-1679 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets...

8.2CVSS7.5AI score0.0053EPSS
Exploits1References2
Microsoft CVE
Microsoft CVE
added 2022/05/17 7:0 a.m.4 views

A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted content may be written to the controller's registers and trigger undesirable actions (such as reset) while the device is still transferring packets. This can ultimately lead to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host resulting in a denial of service condition or potentially execute arbitrary code within the context of the QEMU process on the host. This flaw affects QEMU versions before 7.0.0.

...

8.2CVSS6.7AI score0.0053EPSS
Exploits1
Rows per page
Query Builder