84 matches found
CVE-2019-15030
A flaw in the Linux kernel on the PowerPC platform, was found where a local user can read vector registers of other user processes via a Facility Unavailable exception. An attacker must start a transaction when the FPU operation begins or there is no leakage. Vector registers will become corrupte...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-2081)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:2414-1)
The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following new features were implemented : jscSLE-4875: CML New device IDs for CML jscSLE-7294: Add cpufreq driver for Raspberry Pi fate321840: Reduce memory required to boot capture kernel while using...
CVE-2019-15030
In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction via the hardware transactional memory instruction tbegin and then...
CVE-2019-15031
In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt. To exploit the venerability, a local user starts a transaction via the hardware transactional memory instruction tbegin and then accesses vector registers...
CVE-2019-15030
In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction via the hardware transactional memory instruction tbegin and then...
CVE-2019-15031
In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt. To exploit the venerability, a local user starts a transaction via the hardware transactional memory instruction tbegin and then accesses vector registers...
CVE-2019-15030
In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction via the hardware transactional memory instruction tbegin and then...
CVE-2019-15030
In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction via the hardware transactional memory instruction tbegin and then...
CVE-2019-15030
In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction via the hardware transactional memory instruction tbegin and then...
SUSE SLES12 Security Update : kernel (SUSE-SU-2019:2262-1)
The SUSE Linux Enterprise 12 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2019-1125: Enable Spectre v1 swapgs mitigations bsc1139358. CVE-2018-20855: An issue was discovered in createqpcommon in drivers/infiniband/hw/mlx5/qp.c,...
openSUSE Security Update : the Linux Kernel (openSUSE-2019-1924)
The openSUSE Leap 15.0 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2019-1125: Fix Spectre V1 variant memory disclosure by speculation over the SWAPGS instruction bsc1139358. - CVE-2019-10207: A NULL pointer dereference was possible i...
SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:2073-1)
The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2018-20855: An issue was discovered in the Linux kernel In createqpcommon in drivers/infiniband/hw/mlx5/qp.c, mlx5ibcreateqpresp was never initialized,...
Unspecified vulnerability in Linux kernel (CNVD-2019-38274)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the arch/powerpc/kernel/signal32.c file and the arch/powerpc/kernel/signal64.c file in Linux kernel version 5.2.1 and earlier powerp...
CVE-2019-13648
In the Linux kernel through 5.2.1 on the powerpc platform, when hardware transactional memory is disabled, a local user can cause a denial of service TM Bad Thing exception and system crash via a sigreturn system call that sends a crafted signal frame. This affects arch/powerpc/kernel/signal32.c...
CVE-2019-13648
In the Linux kernel through 5.2.1 on the powerpc platform, when hardware transactional memory is disabled, a local user can cause a denial of service TM Bad Thing exception and system crash via a sigreturn system call that sends a crafted signal frame. This affects arch/powerpc/kernel/signal32.c...
CVE-2019-13648
In the Linux kernel through 5.2.1 on the powerpc platform, when hardware transactional memory is disabled, a local user can cause a denial of service TM Bad Thing exception and system crash via a sigreturn system call that sends a crafted signal frame. This affects arch/powerpc/kernel/signal32.c...
PT-2016-6414 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.8 Description: The issue allows guest OS users to cause a denial of service, resulting in a host OS infinite loop. This occurs when a H CEDE hypercall is made during the existence of a suspended transaction,...
Linux kernel denial of service vulnerability (CNVD-2016-02767)
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the signal implementation of Linux kernel prior to 4.3.5 on the powerpc platform, which arises from the program's failure to check...
PT-2016-6698 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.6.3 on powerpc platforms Description: The issue is related to the mishandling of transactional state by the start thread function in the Linux kernel, which can be exploited by local users to cause a denial of...