ROS-20260407-73-0002

A vulnerability in the getpatinfo function of the arch/x86/mm/pat/memtype.c module of the x86 platform of the Linux operating system kernel is related to the disclosure of sensitive information. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001337)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001337 advisory. arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000808)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000808 advisory. Race condition in arch/x86/kvm/x86.c in the Linux kernel before 3.17.4 allows guest OS users to cause a denial of service guest OS crash via a crafted application th...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000868)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000868 advisory. Buffer overflow in the mpoverridelegacyirq function in arch/x86/kernel/acpi/boot.c in the Linux kernel through 3.2 allows local users to gain privileges via a crafte...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004257)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004257 advisory. An issue was discovered in the Linux kernel before 5.6. svmcpuuninit in arch/x86/kvm/svm.c has a memory leak, aka CID-d80b64ff297e. NOTE: third parties dispute this...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000560)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000560 advisory. Buffer overflow in the completeemulatedmmio function in arch/x86/kvm/x86.c in the Linux kernel before 3.13.6 allows guest OS users to execute arbitrary code on the...

EUVD-2020-23852

Malware in sbrugna...

The vulnerability in the `arch/x86/kernel/cpu/amd.c` component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the arch/x86/kernel/cpu/amd.c component of the Linux operating system is related to errors during resource release. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the arch/x86 kernel component of the Linux operating system, which allows a hacker to gain access to confidential data

The vulnerability of the arch/x86 kernel component of the Linux operating system is related to the exposure of information through mismatches. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

The vulnerability of the __ioremap_checkother() function in the arch/x86/mm/ioremap.c module on the x86 kernel of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ioremapcheckother function in the arch/x86/mm/ioremap.c module on the x86 kernel of the Linux operating system is related to improper control of resource identifiers “resource injection”. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the kvm_pv_send_ipi() function in the arch/x86/include/asm/kvm_host.h module on the Linux operating system’s x86 kernel platform allows a attacker to cause a service failure.

The vulnerability of the kvmpvsendipi function in the arch/x86/include/asm/kvmhost.h module on the Linux operating system’s x86 kernel platform is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a attacker to cause a service failure...

CVE-2024-53072 platform/x86/amd/pmc: Detect when STB is not available

In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd/pmc: Detect when STB is not available Loading the amdpmc module as: amdpmc enablestb=1 ...can result in the following messages in the kernel ring buffer: amdpmc AMDI0009:00: SMU cmd failed. err: 0xff ioremap on R...

CVE-2024-42240

In the Linux kernel, the following vulnerability has been resolved: x86/bhi: Avoid warning in DB handler due to BHI mitigation When BHI mitigation is enabled, if SYSENTER is invoked with the TF flag set then entrySYSENTERcompat uses CLEARBRANCHHISTORY and calls the clearbhbloop before the TF flag...

CVE-2021-47588

In the Linux kernel, the following vulnerability has been resolved: sit: do not call ipip6devfree from sitinitnet ipip6devfree is sit dev-privdestructor, already called by registernetdevice if something goes wrong. Alternative would be to make ipip6devfree robust against multiple invocations, but...

Ubuntu 22.04 LTS / 23.10 : Linux kernel vulnerabilities (USN-6680-2)

The remote Ubuntu 22.04 LTS / 23.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6680-2 advisory. discovered that the NFC Controller Interface NCI implementation in the Linux kernel did not properly handle certain memory allocation failure...

CVE-2021-47092

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Always clear vmx-fail on emulationrequired Revert a relatively recent change that set vmx-fail if the vCPU is in L2 and emulationrequired is true, as that behavior is completely bogus. Setting vmx-fail and synthesizing ...

Code injection

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/memencryptamd.c...

CVE-2024-25744

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/memencryptamd.c...

The vulnerability of the svm_set_x2apic_msr_interception() function in the arch/x86/kvm/svm/svm.c module of the KVM subsystem in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the svmsetx2apicmsrinterception function in the arch/x86/kvm/svm/svm.c module of the KVM subsystem in the Linux operating system is related to an incorrect sequence of operations when switching to the xapic working mode. Exploiting this vulnerability could allow a attacker to...

TFTP Fetch, Linux Meterpreter Service, Reverse TCP Inline

Fetch and execute a x86 payload from a TFTP server. Stub payload for interacting with a Meterpreter Service Module Options msf use payload/cmd/linux/tftp/x86/metsvcreversetcp msf payloadmetsvcreversetcp show actions ...actions... msf payloadmetsvcreversetcp set ACTION msf payloadmetsvcreversetcp...