Lucene search
K

39 matches found

SUSE CVE
SUSE CVE
added 2025/02/27 3:4 a.m.4 views

SUSE CVE-2022-49611

In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB. While at it, add a bunch of comments to attempt to document the current state of tribal knowledge about RSB attacks and what exactly i...

5.5CVSS7.9AI score0.00276EPSS
Exploits0References10
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not populating the RSB during vmexit to prevent IBRS attacks...

5.5CVSS6AI score0.00276EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2024/05/22 10:16 a.m.3 views

hw: amd: Instruction raise #VC exception at exit

A vulnerability was found in AMD SEV-SNP, where a malicious hypervisor can potentially break confidentiality and integrity of SEV-SNP on Linux guests by injecting interrupts. An attacker can inject interrupt 0x80, which is used by Linux for legacy 32-bit system calls, and arbitrarily change the...

6.5CVSS6.8AI score0.0018EPSS
Exploits0References6
OSV
OSV
added 2023/09/13 5:15 p.m.1 views

DEBIAN-CVE-2023-4155

A flaw was found in KVM AMD Secure Encrypted Virtualization SEV in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the VMGEXIT handler recursively. If an attacker manages to call the handler multiple time...

5.6CVSS6AI score0.00159EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/08/08 1:32 a.m.3 views

SUSE CVE-2023-4155

A flaw was found in KVM AMD Secure Encrypted Virtualization SEV in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the VMGEXIT handler recursively. If an attacker manages to call the handler multiple time...

6.5CVSS6.3AI score0.00159EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.2 views

kernel: KVM: nVMX: missing IBPB when exiting from nested guest can lead to Spectre v2 attacks

A flaw was found in the KVM's Intel nested virtualization feature nVMX. Since L1 and L2 shared branch prediction modes guest-user and guest-kernel, KVM did not protect indirect branches in L1 from steering by a malicious agent in L2. This could allow a malicious nested guest to carry out Spectre ...

8.8CVSS6.6AI score0.00285EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/09 10:1 a.m.4 views

kernel: KVM: nVMX: missing IBPB when exiting from nested guest can lead to Spectre v2 attacks

A flaw was found in the KVM's Intel nested virtualization feature nVMX. Since L1 and L2 shared branch prediction modes guest-user and guest-kernel, KVM did not protect indirect branches in L1 from steering by a malicious agent in L2. This could allow a malicious nested guest to carry out Spectre ...

8.8CVSS6.6AI score0.00285EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/03/03 12:0 a.m.6 views

The vulnerability of the spectre_v2_select_mitigation() function in the Linux operating system allows a hacker to execute arbitrary code.

The vulnerability of the spectrev2selectmitigation function in the Linux operating system is related to errors in Intel processors when processing the RET instruction after the termination of a virtual machine. Exploiting this vulnerability allows an attacker to execute arbitrary code...

5.5CVSS6.7AI score0.0035EPSS
Exploits0References31Affected Software5
SUSE CVE
SUSE CVE
added 2023/02/15 3:48 a.m.3 views

SUSE CVE-2021-4093

A flaw was found in the KVM's AMD code for supporting the Secure Encrypted Virtualization-Encrypted State SEV-ES. A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via a malicious VMGEXIT for a string I/O instruction for example, outs or ins using the exit...

8.8CVSS7AI score0.00419EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2023/01/24 2:44 p.m.5 views

hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions

A flaw was found in hw. In certain processors with Intel's Enhanced Indirect Branch Restricted Speculation eIBRS capabilities, soon after VM exit or IBPB command event, the linear address following the most recent near CALL instruction prior to a VM exit may be used as the Return Stack Buffer RSB...

5.5CVSS6.5AI score0.0035EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/12/13 4:9 p.m.6 views

hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions

A flaw was found in hw. In certain processors with Intel's Enhanced Indirect Branch Restricted Speculation eIBRS capabilities, soon after VM exit or IBPB command event, the linear address following the most recent near CALL instruction prior to a VM exit may be used as the Return Stack Buffer RSB...

5.5CVSS6.5AI score0.0035EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/15 11:38 a.m.4 views

hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions

A flaw was found in hw. In certain processors with Intel's Enhanced Indirect Branch Restricted Speculation eIBRS capabilities, soon after VM exit or IBPB command event, the linear address following the most recent near CALL instruction prior to a VM exit may be used as the Return Stack Buffer RSB...

5.5CVSS6.5AI score0.0035EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/08 9:25 a.m.5 views

hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions

A flaw was found in hw. In certain processors with Intel's Enhanced Indirect Branch Restricted Speculation eIBRS capabilities, soon after VM exit or IBPB command event, the linear address following the most recent near CALL instruction prior to a VM exit may be used as the Return Stack Buffer RSB...

5.5CVSS6.5AI score0.0035EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/02 4:42 p.m.4 views

hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions

A flaw was found in hw. In certain processors with Intel's Enhanced Indirect Branch Restricted Speculation eIBRS capabilities, soon after VM exit or IBPB command event, the linear address following the most recent near CALL instruction prior to a VM exit may be used as the Return Stack Buffer RSB...

5.5CVSS6.5AI score0.0035EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/25 8:45 a.m.3 views

kernel: x86/speculation: Fill RSB on vmexit for IBRS

In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB. While at it, add a bunch of comments to attempt to document the current state of tribal knowledge about RSB attacks and what exactly i...

5.5CVSS6.3AI score0.00276EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/05/10 1:58 p.m.7 views

kernel: KVM: SVM: out-of-bounds read/write in sev_es_string_io

A flaw was found in the KVM's AMD code for supporting the Secure Encrypted Virtualization-Encrypted State SEV-ES. A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via a malicious VMGEXIT for a string I/O instruction for example, outs or ins using the exit...

8.8CVSS6.7AI score0.00419EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/05/10 1:43 p.m.9 views

kernel: KVM: SVM: out-of-bounds read/write in sev_es_string_io

A flaw was found in the KVM's AMD code for supporting the Secure Encrypted Virtualization-Encrypted State SEV-ES. A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via a malicious VMGEXIT for a string I/O instruction for example, outs or ins using the exit...

8.8CVSS6.7AI score0.00419EPSS
Exploits1References5
OSV
OSV
added 2021/12/13 12:0 a.m.7 views

UBUNTU-CVE-2021-4093

A flaw was found in the KVM's AMD code for supporting the Secure Encrypted Virtualization-Encrypted State SEV-ES. A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via a malicious VMGEXIT for a string I/O instruction for example, outs or ins using the exit...

8.8CVSS6.8AI score0.00419EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2019/11/26 11:57 a.m.7 views

Kernel: KVM: nVMX: use-after-free of the hrtimer for emulation of the preemption timer

A use-after-free vulnerability was found in the way the Linux kernel's KVM hypervisor emulates a preemption timer for L2 guests when nested =1 virtualization is enabled. This high resolution timerhrtimer runs when a L2 guest is active. After VM exit, the syncvmcs12 timer object is stopped. The...

7.8CVSS7.1AI score0.00805EPSS
Exploits1References4
Rows per page
Query Builder