DEBIAN-CVE-2022-49562

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Use trycmpxchguser to update guest PTE A/D bits Use the recently introduced trycmpxchguser to update guest PTE A/D bits instead of mapping the PTE into kernel address space. The VMPFNMAP path is broken as it assumes tha...

UBUNTU-CVE-2022-49557

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: KVM: Set the base guest FPU uABI size to sizeofstruct kvmxsave Set the starting uABI size of KVM's guest FPU to 'struct kvmxsave', i.e. to KVM's historical uABI size. When saving FPU state for usersapce, KVM well, now th...

CVE-2022-49610 KVM: VMX: Prevent RSB underflow before vmenter

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Prevent RSB underflow before vmenter On VMX, there are some balanced returns between the time the guest's SPECCTRL value is written, and the vmenter. Balanced returns matched by a preceding call are usually ok, but it's...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not populating the RSB during vmexit to prevent IBRS attacks...

CVE-2024-52939

Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to trigger a write data outside the Guest's virtualised GPU memory...

CVE-2024-47896

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory...

CVE-2024-12577

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory...

CVE-2024-47896

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory...

CVE-2024-46975

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data into another Guest's virtualised GPU memory...

CVE-2024-12577

CVE-2024-12577 concerns Imagination Technologies PowerVR-GPU driver where kernel-space code in a guest VM can leverage memory shared with the GPU firmware to write data outside the guest’s virtualised GPU memory. The CVE appears in multiple sources (NVD entry; CVE list entry describing the exploi...

CVE-2024-47896

CVE-2024-47896 concerns Imagination Technologies PowerVR-GPU drivers. According to the provided sources, a kernel component running inside a guest VM can access memory shared with the GPU Firmware and write data outside the Guest VM’s virtualized GPU memory, indicating a local vulnerability with ...

Imagination GPU Driver 安全漏洞

Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in the Imagination GPU Driver that originates from kernel software installed and running in the Guest VM that may exploit memory shared with the GPU firmware to write data outside of the Guest's...

Imagination GPU Driver 安全漏洞

Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in the Imagination GPU Driver that originates from kernel software installed and running in a Guest VM that may issue improper commands to the GPU firmware to trigger writing data outside of the Guest's...

Imagination GPU Driver 安全漏洞

Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in the Imagination GPU Driver, which originates from kernel software installed and running in a Guest VM that may be able to leverage memory shared with the GPU firmware to write data to another Guest's...

Imagination GPU Driver 安全漏洞

The Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in the Imagination GPU Driver that originates from kernel software installed and running in the Guest VM that may leverage memory shared with the GPU firmware to write data outside of the Guest's...

PT-2025-7435 · Kernel · Kernel

Name of the Vulnerable Software and Affected Versions: Kernel software affected versions not specified Description: The issue concerns kernel software installed and running inside a Guest VM, which may post improper commands to the GPU Firmware. This can trigger a write of data outside the Guest'...

Vyper 安全漏洞

Vyper is a Pythonic smart contract language for EVM open sourced by vyperlang. A security vulnerability exists in Vyper that stems from multiple evaluations of an iterator expression, which could lead to abnormal program behavior...

PT-2025-7336 · Unknown · Npu Firmware

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GP...

openSUSE 15 Security Update : java-11-openj9 (openSUSE-SU-2025:0066-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:0066-1 advisory. - Update to OpenJDK 11.0.26 with OpenJ9 0.49.0 virtual machine - Including Oracle October 2024 and January 2025 CPU changes CVE-2024-21208...

OPENSUSE-SU-2025:0066-1 Security update for java-11-openj9

This update for java-11-openj9 fixes the following issues: - Update to OpenJDK 11.0.26 with OpenJ9 0.49.0 virtual machine - Including Oracle October 2024 and January 2025 CPU changes CVE-2024-21208 boo1231702, CVE-2024-21210 boo1231711, CVE-2024-21217 boo1231716, CVE-2024-21235 boo1231719,...