Lucene search
K

40 matches found

RedHat Linux
RedHat Linux
added yesterday5 views

kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM x86 shadow paging mechanism. This vulnerability occurs when a host page directory entry PDE mapping is changed from within the guest, leading to an unexpected role mismatch in shadow paging. This mismatch can cause a...

7.1AI score0.00176EPSS
Exploits5References6
RedHat Linux
RedHat Linux
added 5 days ago6 views

kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM x86 shadow paging mechanism. This vulnerability occurs when a host page directory entry PDE mapping is changed from within the guest, leading to an unexpected role mismatch in shadow paging. This mismatch can cause a...

6.3AI score0.00176EPSS
Exploits5References6
RedHat Linux
RedHat Linux
added 6 days ago4 views

kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM x86 shadow paging mechanism. This vulnerability occurs when a host page directory entry PDE mapping is changed from within the guest, leading to an unexpected role mismatch in shadow paging. This mismatch can cause a...

6.5AI score0.00176EPSS
Exploits5References6
OSV
OSV
added 2026/07/04 12:17 p.m.7 views

UBUNTU-CVE-2026-53359

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected role Commit 0cb2af2ea66ad "KVM: x86: Fix shadow paging use-after-free due to unexpected GFN" fixed a shadow paging mismatch between stored and computed GFNs; the bug...

6AI score0.00176EPSS
Exploits5References10
NVD
NVD
added 2026/06/24 5:17 p.m.7 views

CVE-2026-53057

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Add IOTINVAL after updating DDT/PDT entries Add riscviommuiodiriotinval to perform required TLB and context cache invalidations after updating DDT or PDT entries, as mandated by the RISC-V IOMMU specification Section...

8.8CVSS0.00127EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/24 4:30 p.m.6 views

EUVD-2026-38925

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Add IOTINVAL after updating DDT/PDT entries Add riscviommuiodiriotinval to perform required TLB and context cache invalidations after updating DDT or PDT entries, as mandated by the RISC-V IOMMU specification Section...

5.7AI score0.00127EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 4:30 p.m.2 views

CVE-2026-53057 iommu/riscv: Add IOTINVAL after updating DDT/PDT entries

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Add IOTINVAL after updating DDT/PDT entries Add riscviommuiodiriotinval to perform required TLB and context cache invalidations after updating DDT or PDT entries, as mandated by the RISC-V IOMMU specification Section...

8.8CVSS5.8AI score0.00127EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.14 views

PT-2026-51951

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the RISC-V IOMMU implementation where TLB Translation Lookaside Buffer and context cache invalidations were not performed after updating Device Directory Table DDT or...

8.8CVSS6AI score0.00127EPSS
Exploits0References12
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: MIPS: pgalloc: fixed a memory leak caused by pgdfree The pgd page is freed by the generic implementation pgdfree since commit f9cb654cb550 „asm-generic: pgalloc: provides a generic pgdfree”, however, there are scenarios in which...

5.5CVSS6.1AI score0.00245EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/06 9:57 p.m.11 views

CVE-2026-43214

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM for x86 architectures. When reading Page Directory Pointer Table Registers PDPTRs in the getsregs2 function, the system fails to use proper Sleepable Read-Copy Update SRCU protection. This oversight can lead to incorrect memo...

7.8CVSS5.8AI score0.00139EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/06 12:30 p.m.6 views

EUVD-2026-27774

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Add SRCU protection for reading PDPTRs in getsregs2 Add SRCU read-side protection when reading PDPTR registers in getsregs2. Reading PDPTRs may trigger access to guest memory: kvmpdptrread - svmcachereg - loadpdptrs -...

5.7AI score0.00139EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.38 views

CVE-2026-43214 KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2()

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Add SRCU protection for reading PDPTRs in getsregs2 Add SRCU read-side protection when reading PDPTR registers in getsregs2. Reading PDPTRs may trigger access to guest memory: kvmpdptrread - svmcachereg - loadpdptrs -...

7.8CVSS0.00139EPSS
Exploits0References6
NVD
NVD
added 2026/04/22 3:16 a.m.10 views

CVE-2026-6386

In order to apply a particular protection key to an address range, the kernel must update the corresponding page table entries. The subroutine which handled this failed to take into account the presence of 1GB largepage mappings created using the shmcreatelargepage3 interface. In particular, it...

6.2CVSS0.00162EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005138)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005138 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory Ignore nCR34:0 when loading PDPTEs from...

7.1CVSS6.7AI score0.00243EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.8 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414374)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414374 advisory. mm/mremap.c in the Linux kernel before 5.13.3 has a use-after-free via a stale TLB because an rmap lock is not held during a PUD move. Tenable has extracted the...

7CVSS6.5AI score0.0045EPSS
Exploits1References3
OSV
OSV
added 2025/10/04 3:16 p.m.10 views

CVE-2023-53545 drm/amdgpu: unmap and remove csa_va properly

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: unmap and remove csava properly Root PD BO should be reserved before unmap and remove a bova from VM otherwise lockdep will complain. v2: check fpriv-csava is not NULL instead of amdgpumcbp christian 14616.936827...

5.5CVSS6.5AI score0.00146EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/10/04 12:0 a.m.8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly preserving the root PD BO, which could lead to a null pointer dereference...

5.8AI score0.00146EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.19 views

EUVD-2022-42601

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.11626EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/09/17 2:56 p.m.5 views

CVE-2023-53361

In the Linux kernel, the following vulnerability has been resolved: LoongArch: mm: Add p?dleaf definitions When I do LTP test, LTP test case ksm06 caused panic at breakksmpmdentry - pmdleaf Huge page table but False - ptepresent panic The reason is pmdleaf is not defined, So like commit...

5.5CVSS5.4AI score0.00172EPSS
Exploits0
OSV
OSV
added 2025/09/11 5:15 p.m.5 views

DEBIAN-CVE-2025-39776

In the Linux kernel, the following vulnerability has been resolved: mm/debugvmpgtable: clear page table entries at destroyargs The mm/debugvmpagetable test allocates manually page table entries for the tests it runs, using also its manually allocated mmstruct. That in itself is ok, but when it...

7.8CVSS6.1AI score0.00144EPSS
Exploits0References1
Rows per page
Query Builder