107 matches found
CVE-2025-38359 s390/mm: Fix in_atomic() handling in do_secure_storage_access()
In the Linux kernel, the following vulnerability has been resolved: s390/mm: Fix inatomic handling in dosecurestorageaccess Kernel user spaces accesses to not exported pages in atomic context incorrectly try to resolve the page fault. With debug options enabled call traces like this can be seen:...
CVE-2025-38359 s390/mm: Fix in_atomic() handling in do_secure_storage_access()
In the Linux kernel, the following vulnerability has been resolved: s390/mm: Fix inatomic handling in dosecurestorageaccess Kernel user spaces accesses to not exported pages in atomic context incorrectly try to resolve the page fault. With debug options enabled call traces like this can be seen:...
CVE-2025-38359
CVE-2025-38359 affects the Linux kernel on s390/x architectures. The issue is a fix in in_atomic() handling in do_secure_storage_access() where kernel user-space accesses to not-exported pages in atomic context can trigger a page fault handling path. The described impact involves a potential slee...
CVE-2025-38359
In the Linux kernel, the following vulnerability has been resolved: s390/mm: Fix inatomic handling in dosecurestorageaccess Kernel user spaces accesses to not exported pages in atomic context incorrectly try to resolve the page fault. With debug options enabled call traces like this can be seen:...
CVE-2025-24508
Extraction of Account Connectivity Credentials ACCs from the IT Management Agent secure storage...
CVE-2025-24508 Offline Extraction of Account Connectivity Credentials (ACCs) in IT Management Suite
Extraction of Account Connectivity Credentials ACCs from the IT Management Agent secure storage...
CVE-2025-46733
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In version 4.5.0, using a specially crafted tee-supplicant binary running in REE userspace, an attacker can trigger a panic in a TA that...
DEBIAN-CVE-2025-46733
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In version 4.5.0, using a specially crafted tee-supplicant binary running in REE userspace, an attacker can trigger a panic in a TA that...
UBUNTU-CVE-2025-46733
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In version 4.5.0, using a specially crafted tee-supplicant binary running in REE userspace, an attacker can trigger a panic in a TA that...
CVE-2025-46733
OP-TEE 4.5.0 is vulnerable to a local, REE userland attack where a malicious tee-supplicant can craft Secure Storage API responses to cause panics in TAs using libutee. The flaw arises because return codes from secure storage operations are unsafely passed from the REE tee-supplicant, through the...
CVE-2025-46733 REE userspace code can panic TAs, leading to fTPM PCR reset and data disclosure
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In version 4.5.0, using a specially crafted tee-supplicant binary running in REE userspace, an attacker can trigger a panic in a TA that...
CVE-2025-46733
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In version 4.5.0, using a specially crafted tee-supplicant binary running in REE userspace, an attacker can trigger a panic in a TA that...
CVE-2025-46733 REE userspace code can panic TAs, leading to fTPM PCR reset and data disclosure
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In version 4.5.0, using a specially crafted tee-supplicant binary running in REE userspace, an attacker can trigger a panic in a TA that...
OP-TEE Trusted OS 安全漏洞
OP-TEE Trusted OS is an OP-TEE open source Trusted Execution Environment TEE that implements Arm TrustZone technology. A security vulnerability exists in OP-TEE Trusted OS version 4.5.0, which stems from an unvalidated Secure Storage API return code that could cause the TA to crash...
PT-2025-27951
Name of the Vulnerable Software and Affected Versions: OP-TEE version 4.5.0 Description: OP-TEE is a Trusted Execution Environment TEE designed as a companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. An attacker can trigger a panic in a TA that...
CVE-2019-0307
Diagnostics Agent in Solution Manager, version 7.2, stores several credentials such as SLD user connection as well as Solman user communication in the SAP Secure Storage file which is not encrypted by default. By decoding these credentials, an attacker with admin privileges could gain access to t...
buildx allows a possible credential leakage to telemetry endpoint
Impact Some cache backends allow configuring their credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. If this was done by the user, these secure values could be captured together with OpenTelemetry trace as part of the arguments and flags for the...
Samsung Blockchain Keystore Out-of-Bounds Write Vulnerability
Samsung Blockchain Keystore is a secure storage solution introduced by South Korea's Samsung SAMSUNG on its mobile devices to protect users' blockchain keys and digital assets. Samsung Blockchain Keystore suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to...
On Secure Voting Systems
Andrew Appel shepherded a public comment--signed by twenty election cybersecurity experts, including myself--on best practices for ballot marking devices and vote tabulation. It was written for the Pennsylvania legislature, but its general in nature. From the executive summary: We believe that no...
CVE-2023-37540
Sametime Connect desktop chat client includes, but does not use or require, the use of an Eclipse feature called Secure Storage. Using this Eclipse feature to store sensitive data can lead to exposure of that data...