Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ipv4: Prevent potential spectre v1 gadgets in ipmetricsconvert if !type continue; if type RTAXMAX return -EINVAL; ... metricstype - 1 = val; @type is used as an array index, and we need to prevent CPU speculation or risk leaking...

Astra Linux - уязвимость в linux-5.10

There is a vulnerability in the Linux Kernel within the KVM framework: nVMX, which allows for speculative execution attacks. L2 can execute Spectre v2 attacks on L1, as L1 believes it does not need retpolines or IBPB after executing L2, due to KVM L0 indicating support for eIBRS to L1. An attacke...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix potential Spectre v1 gadget It seems that nr might be a Spectre v1 gadget, as it is provided by a user and used as an array index. This issue prevents the contents of kernel memory from being leaked to user...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021586)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021586 advisory. In the Linux kernel, the following vulnerability has been resolved: netlink: prevent potential spectre v1 gadgets Most netlink attributes are parsed and validated...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the TSV110 processor’s susceptibility to Spectre-BHB attacks, potentially leading to information...

K000160908: Linux kernel vulnerability CVE-2019-15902

Security Advisory Description A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in...

MiracleLinux 7 : microcode_ctl-2.1-22.5.el7 (AXSA:2018-2519:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2018-2519:02 advisory. This update supersedes microcode provided by Asianux with the CVE-2017-5715 Spectre CPU branch injection vulnerability mitigation. Historically, Asianux has...

MiracleLinux 4 : microcode_ctl-1.17-25.4.AXS4 (AXSA:2018-2518:02)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2018-2518:02 advisory. This update supersedes microcode provided by Asianux with the CVE-2017-5715 Spectre CPU branch injection vulnerability mitigation. Historically, Asianux has...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000256)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000256 advisory. A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69,...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989389)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989389 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv4: prevent potential spectre v1 gadget in ipmetricsconvert if !type continue; if type RTAXMAX...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989023)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989023 advisory. In the Linux kernel, the following vulnerability has been resolved: kvm: avoid speculation-based attacks from out-of-range memslot accesses KVM's mechanism for...

EUVD-2018-7446

Malware in sbrugna...

EUVD-2018-4341

Malware in sbrugna...

EUVD-2019-6812

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414353)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414353 advisory. A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks.L2 can carry out Spectre v2 attacks on L1 due to L1 thinking ...

media: av7110: fix a spectre vulnerability

...

Linux Distros Unpatched Vulnerability : CVE-2019-15902

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through...

kernel: dm ioctl: prevent potential spectre v1 gadget

A vulnerability was found in the Linux kernel's dm-ioctl interface in the lookupioctl function, which accepts a user-provided cmd value that is used to index the ioctls array directly. This issue could lead to an out-of-bounds access if the CPU speculatively executes the array access before cmd i...

microcode_ctl: From CVEorg collector

New Spectre-v2 attack classes have been discovered within CPU architectures that enable self-training exploitation of speculative execution within the same privilege domain. These novel techniques bypass existing hardware and software mitigations, including IBPB, eIBRS, and BHINO, by leveraging...

Spectre-Branch Status Eviction (BSE) Vulnerability on ARM® Processors

AMD ID: AMD-SB-8007 Potential Impact: N/A Severity: N/A Summary According to the ARM® security team, Spectre-BSE exploits a microarchitectural mechanism that equips an adversary with a weak form of control over the victim’s branch history despite existing protections. This can lead to exploitativ...