Lucene search
K

163 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fixed SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to NTARMSVE regset can place the tracee into an invalid state. In this state, non-streaming SVE register data i...

5.5CVSS5.7AI score0.001EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: Discarding stale CPU state when handling SME traps The logic for handling SME traps improperly manipulates the saved FPSIMD/SVE/SME state. A race condition can occur when the SME trap handler is preempted before and...

5.5CVSS6AI score0.00138EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/02/18 12:25 a.m.4 views

SUSE CVE-2026-23114

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fix SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to the NTARMSVE regset can place the tracee into an invalid state where non-streaming SVE register data is stored...

5.5CVSS5.7AI score0.001EPSS
Exploits0References3
OSV
OSV
added 2026/02/14 3:16 p.m.3 views

UBUNTU-CVE-2026-23114

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fix SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to the NTARMSVE regset can place the tracee into an invalid state where non-streaming SVE register data is stored...

5.5CVSS5.7AI score0.001EPSS
Exploits0References5
OSV
OSV
added 2026/02/14 3:9 p.m.21 views

CVE-2026-23114 arm64/fpsimd: ptrace: Fix SVE writes on !SME systems

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fix SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to the NTARMSVE regset can place the tracee into an invalid state where non-streaming SVE register data is stored...

5.5CVSS5.3AI score0.001EPSS
Exploits0References5
CVE
CVE
added 2026/02/14 3:9 p.m.25 views

CVE-2026-23114

Summary (CVE-2026-23114) The Linux kernel arm64 FPSIMD/SVE state management vulnerability arises when SVE is supported but SME is not: a ptrace write to the NT_ARM_SVE regset can place the tracee in an invalid state, storing non-streaming SVE data in FP_STATE_SVE format while TIF_SVE is not set. ...

5.5CVSS5.3AI score0.001EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/02/14 3:9 p.m.4 views

CVE-2026-23114

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fix SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to the NTARMSVE regset can place the tracee into an invalid state where non-streaming SVE register data is stored...

5.5CVSS5.4AI score0.001EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/02/14 12:0 a.m.6 views

PT-2026-8107

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fix SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to the NT ARM SVE regset can place the tracee into an invalid state where non-streaming SVE register data is stor...

5.3AI score0.001EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/02/05 12:24 a.m.8 views

SUSE CVE-2026-23102

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Fix restoration of SVE context When SME is supported, Restoring SVE signal context can go wrong in a few ways, including placing the task into an invalid state where the kernel may read from out-of-bounds...

5.5CVSS5.5AI score0.00117EPSS
Exploits0References19
NVD
NVD
added 2026/02/04 5:16 p.m.6 views

CVE-2026-23102

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Fix restoration of SVE context When SME is supported, Restoring SVE signal context can go wrong in a few ways, including placing the task into an invalid state where the kernel may read from out-of-bounds...

7.1CVSS0.00117EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/02/04 5:16 p.m.8 views

CVE-2026-23107

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA The code to restore a ZA context doesn't attempt to allocate the task's svestate before setting TIFSME. Consequently, restoring a ZA context can place a task into an...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References12
ATTACKERKB
ATTACKERKB
added 2026/02/04 4:8 p.m.5 views

CVE-2026-23102

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Fix restoration of SVE context When SME is supported, Restoring SVE signal context can go wrong in a few ways, including placing the task into an invalid state where the kernel may read from out-of-bounds...

5.5AI score0.00117EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/02/04 4:8 p.m.20 views

CVE-2026-23102

CVE-2026-23102 affects the ARM64/Linux kernel path arm64/fpsimd: signal, where restoring SVE signal context with SME enabled can put a task into an invalid state. The vulnerability allows out-of-bounds memory reads or a potential fatal fault, or task termination via SIGKILL, if SVE signal data is...

7.1CVSS5.5AI score0.00117EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/04 1:20 p.m.3 views

CVE-2025-8456

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Kod8 Software Technologies Trade Ltd. Co. Kod8 Individual and SME Website allows Reflected XSS.This issue affects Kod8 Individual and SME Website: through 03022026. NOTE: The vendor was...

7.6CVSS5.3AI score0.00175EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/03 8:22 a.m.4 views

CVE-2025-8456

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Kod8 Software Technologies Trade Ltd. Co. Kod8 Individual and SME Website allows Reflected XSS. This issue affects Kod8 Individual and SME Website: through 03022026. NOTE: The vendor was...

7.6CVSS5.4AI score0.00175EPSS
Exploits0References3
CVE
CVE
added 2026/02/03 8:22 a.m.12 views

CVE-2025-8456

CVE-2025-8456 affects Kod8 Individual and SME Website. Red Hat and Circl/CIRCL data confirm a vulnerability in input handling during web page generation, leading to a Reflected XSS . Affected software/versions are cited as Kod8 Individual and SME Website up to 03022026. The underlying cause is im...

7.6CVSS5.4AI score0.00175EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/03 8:22 a.m.4 views

EUVD-2025-206660

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Kod8 Software Technologies Trade Ltd. Co. Kod8 Individual and SME Website allows Reflected XSS.This issue affects Kod8 Individual and SME Website: through 03022026. NOTE: The vendor was...

7.6CVSS5.3AI score0.00175EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38170)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38170 advisory. - In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: Discard stale CPU state...

5.5CVSS5.3AI score0.00138EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 8 : kernel-4.18.0-553.81.1.el8_10 (AXSA:2025-11004:84)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11004:84 advisory. kernel: Bluetooth: L2CAP: fix bad unlock balance in l2capdisconnectrsp CVE-2023-53297 kernel: efivarfs: Fix slab-out-of-bounds in efivarfsdcompare...

8CVSS7AI score0.0033EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.7 views

PT-2026-6177

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-rc1 Description The Linux kernel contains a flaw in the arm64/fpsimd component related to signal handling and the restoration of ZA zeroed address space contexts. The code responsible for restoring a ZA...

5.5CVSS5.5AI score0.00126EPSS
Exploits0
Rows per page
Query Builder