Linux kernel conditional contention vulnerability (CNVD-2023-71721)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from a conditional contention vulnerability, which arises from a KVM in the Linux kernel with Secure Encrypted Virtualization SEV AMD processor...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from a conditional contention vulnerability, which arises from a KVM in the Linux kernel with Secure Encrypted Virtualization SEV AMD processor...

USN-6343-1: Linux kernel (OEM) vulnerabilities

It was discovered that the IPv6 implementation in the Linux kernel contained a high rate of hash collisions in connection lookup table. A remote attacker could use this to cause a denial of service excessive CPU consumption. CVE-2023-1206 Ross Lagerwall discovered that the Xen netback backend...

Fedora 37 : kernel (2023-d9509be489)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-d9509be489 advisory. The 6.4.10 stable kernel update contains a number of important fixes across the tree. Tenable has extracted the preceding description block directly...

Fedora 38 : kernel (2023-ee241dcf80)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-ee241dcf80 advisory. The 6.4.10 stable kernel update contains a number of important fixes across the tree. Tenable has extracted the preceding description block directly...

CVE-2023-4155

A flaw was found in KVM AMD Secure Encrypted Virtualization SEV in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the VMGEXIT handler recursively. If an attacker manages to call the handler multiple time...

UBUNTU-CVE-2023-4155

A flaw was found in KVM AMD Secure Encrypted Virtualization SEV in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the VMGEXIT handler recursively. If an attacker manages to call the handler multiple time...

SUSE CVE-2023-4155

A flaw was found in KVM AMD Secure Encrypted Virtualization SEV in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the VMGEXIT handler recursively. If an attacker manages to call the handler multiple time...

CVE-2023-4155

A flaw was found in KVM AMD Secure Encrypted Virtualization SEV in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the VMGEXIT handler recursively. If an attacker manages to call the handler multiple time...

Debian dla-3511 : amd64-microcode - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3511 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3511-1 [email protected]...

AMD Secure Encrypted Virtualization 安全漏洞

AMD Secure Encrypted Virtualization is a software application from UltraMicroelectronics AMD. Hardware-accelerated memory encryption to protect data in use. A security vulnerability exists in AMD Secure Encrypted Virtualization. An attacker could exploit this vulnerability to cause a denial of...

PT-2023-12100 · Amd · Amd Secure Encrypted Virtualization +1

Name of the Vulnerable Software and Affected Versions: AMD Secure Encrypted Virtualization SEV and SEV-ES affected versions not specified Description: The issue is related to insufficient validation in parsing Owner's Certificate Authority OCA certificates, which can lead to a host crash and...

Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2023-070)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-070 advisory. 2024-04-10: CVE-2023-0461 was added to this advisory. 2024-02-01: CVE-2024-0562 was added to this advisory. 2024-02-01: CVE-2022-48619 was added to this advisory. 2023-10-10: CVE-2023-3357 was...

The vulnerability of the KVM virtualization subsystem in AMD Secure Encrypted Virtualization (SEV) in the virt/kvm/kvm_main.c kernel of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the KVM virtualization subsystem in AMD Secure Encrypted Virtualization SEV in the virt/kvm/kvmmain.c kernel of the Linux operating system is related to a breach of processor cache integrity. Exploiting this vulnerability could allow an attacker to trigger a service failure...

The vulnerability of the AMD Secure Encrypted Virtualization (SEV) technology in microprogramming software for AMD processors allows attackers to disclose protected information.

The vulnerability of AMD Secure Encrypted Virtualization SEV microprogramming software for processors is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to disclose protected information...

The vulnerabilities of AMD Secure Processor (ASP), System Management Unit (SMU), and Secure Encrypted Virtualization (SEV) related to initialization errors allow attackers to disclose protected information.

The vulnerabilities of AMD Secure Processor ASP, System Management Unit SMU, and Secure Encrypted Virtualization SEV related to initialization errors allow attackers to expose protected information...

The vulnerability of the AMD Secure Encrypted Virtualization (SEV) technology in microprogramming software for AMD processors allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of AMD Secure Encrypted Virtualization SEV microprogramming software for processors is related to insufficient validation of input data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the AMD Secure Encrypted Virtualization (SEV) implementation, a micro-software solution for AMD processors, allows attackers to disclose protected information.

The vulnerability of the AMD Secure Encrypted Virtualization SEV technology, a micro-software solution for AMD processors, arises from the execution of operations beyond the buffer in memory due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to...

SUSE CVE-2019-9836

Secure Encrypted Virtualization SEV on Advanced Micro Devices AMD Platform Security Processor PSP; aka AMD Secure Processor or AMD-SP 0.17 build 11 and earlier has an insecure cryptographic implementation...

SUSE CVE-2021-4093

A flaw was found in the KVM's AMD code for supporting the Secure Encrypted Virtualization-Encrypted State SEV-ES. A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via a malicious VMGEXIT for a string I/O instruction for example, outs or ins using the exit...