Lucene search
K

1255 matches found

BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.4 views

The vulnerability of the fpmr_set() function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support in the Linux operating system. This vulnerability allows an attacker to gain access to protected information or cause a service failure.

The vulnerability of the fpmrset function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support in the Linux operating system, involves a memory leak. Exploiting this vulnerability could allow an attacker to access protected information or cause service failures...

6.1CVSS6.5AI score0.00178EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.8 views

The vulnerability of the poe_set() function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support in the Linux operating system, allows a attacker to gain access to protected information or cause service interruptions.

The vulnerability of the poeset function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support for the Linux operating system, relates to the use of uninitialized resources. Exploiting this vulnerability could allow an attacker to access protected information or...

6.1CVSS6.5AI score0.00175EPSS
Exploits0References6Affected Software1
SUSE CVE
SUSE CVE
added 2025/04/09 1:33 a.m.4 views

SUSE CVE-2025-22013

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

5.5CVSS7.6AI score0.00172EPSS
Exploits0References15
NVD
NVD
added 2025/04/08 9:15 a.m.12 views

CVE-2025-22013

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

5.5CVSS0.00172EPSS
Exploits0References6
OSV
OSV
added 2025/04/08 9:15 a.m.0 views

DEBIAN-CVE-2025-22013

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

5.5CVSS5.7AI score0.00172EPSS
Exploits0References1
CVE
CVE
added 2025/04/08 8:18 a.m.126 views

CVE-2025-22013

The CVE-2025-22013 entry concerns Linux kernel KVM on arm64, where host FPSIMD/SVE/SME state could be lazily saved and flushed, risking stale host state in memory and related issues (e.g., SVE discard due to TIF_SVE/CPACR_ELx.ZEN config, ptrace modifications, and non‑protected VM scenarios). The ...

5.5CVSS7.1AI score0.00172EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/04/08 8:18 a.m.10 views

CVE-2025-22013 KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

5.5CVSS6.1AI score0.00172EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/04/08 8:18 a.m.16 views

CVE-2025-22013 KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

0.00172EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/04/02 11:34 a.m.5 views

kernel: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

5.5CVSS6.8AI score0.00172EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/03/08 8:0 a.m.11 views

arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL

...

6.1CVSS7.4AI score0.00201EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2012-1097

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The regset aka register set feature in the Linux kernel before 3.2.10 does not properly handle the absence of .get and .set methods, which allows local users to...

7.8CVSS7.1AI score0.00351EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2025/01/20 7:21 a.m.14 views

CVE-2025-21632

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure shadow stack is active before "getting" registers The x86 shadow stack support has its own set of registers. Those registers are XSAVE-managed, but they are "supervisor state components" which means that userspace...

5.5CVSS6.8AI score0.002EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/01/20 3:47 a.m.2 views

SUSE CVE-2025-21632

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure shadow stack is active before "getting" registers The x86 shadow stack support has its own set of registers. Those registers are XSAVE-managed, but they are "supervisor state components" which means that userspace...

5.5CVSS7.5AI score0.002EPSS
Exploits0References13
OSV
OSV
added 2025/01/19 11:15 a.m.2 views

DEBIAN-CVE-2025-21632

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure shadow stack is active before "getting" registers The x86 shadow stack support has its own set of registers. Those registers are XSAVE-managed, but they are "supervisor state components" which means that userspace...

5.5CVSS5.7AI score0.002EPSS
Exploits0References1
NVD
NVD
added 2025/01/19 11:15 a.m.9 views

CVE-2025-21632

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure shadow stack is active before "getting" registers The x86 shadow stack support has its own set of registers. Those registers are XSAVE-managed, but they are "supervisor state components" which means that userspace...

5.5CVSS0.002EPSS
Exploits0References3
CVE
CVE
added 2025/01/19 10:17 a.m.2318 views

CVE-2025-21632

CVE-2025-21632: In the Linux kernel, a patch fixes shadow stack handling for x86 XSAVE state accessed via ptrace. Previously, regset get/set paths could be invoked with shadow stacks disabled (ARCH_SHSTK_SHSTK==0), causing get_xsave_addr() to return NULL and trigger a WARN_ON in ssp_get. The fix ...

5.5CVSS6.9AI score0.002EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/01/19 10:17 a.m.8 views

CVE-2025-21632 x86/fpu: Ensure shadow stack is active before "getting" registers

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure shadow stack is active before "getting" registers The x86 shadow stack support has its own set of registers. Those registers are XSAVE-managed, but they are "supervisor state components" which means that userspace...

5.5CVSS6AI score0.002EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/01/19 10:17 a.m.16 views

CVE-2025-21632 x86/fpu: Ensure shadow stack is active before "getting" registers

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure shadow stack is active before "getting" registers The x86 shadow stack support has its own set of registers. Those registers are XSAVE-managed, but they are "supervisor state components" which means that userspace...

0.002EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/01/13 1:22 p.m.10 views

CVE-2024-57878

In the Linux kernel, the following vulnerability has been resolved: arm64: ptrace: fix partial SETREGSET for NTARMFPMR Currently fpmrset doesn't initialize the temporary 'fpmr' variable, and a SETREGSET call with a length of zero will leave this uninitialized. Consequently an arbitrary value will...

5.5CVSS6.6AI score0.00178EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/01/13 12:51 p.m.9 views

CVE-2024-57877

In the Linux kernel, the following vulnerability has been resolved: arm64: ptrace: fix partial SETREGSET for NTARMPOE Currently poeset doesn't initialize the temporary 'ctrl' variable, and a SETREGSET call with a length of zero will leave this uninitialized. Consequently an arbitrary value will b...

5.5CVSS6.6AI score0.00175EPSS
Exploits0References4
Rows per page
Query Builder