Lucene search
K

44 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Clear XSTATEBVi in the guest XSAVE state whenever XFDi=1 When loading the guest XSAVE state via KVMSETXSAVE, and when updating XFD in response to a guest WRMSR, the disabled features in XSTATEBV are cleared to ensure tha...

5.5CVSS5.9AI score0.00198EPSS
Exploits0References2
CVE
CVE
added 2025/12/08 1:19 a.m.17 views

CVE-2023-53749

CVE-2023-53749 is discussed across multiple sources as a Linux kernel issue: the x86 memory-clearing path in clear_user_rep_good() had incorrect exception-table annotations, which could lead to a kernel oops instead of -EFAULT when a user-space access faults. Upstream fixes remove the problematic...

6.2AI score0.00024EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/02 12:0 a.m.11 views

Ubuntu 24.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-7789-1)

"The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7789-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws i...

7.8CVSS7.5AI score0.01345EPSS
Exploits8References184
Positive Technologies
Positive Technologies
added 2025/07/28 12:0 a.m.4 views

PT-2025-37196

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw in the mm/kmemleak component where the kmemleak do cleanup function could lead to a soft lockup. This issue was observed on x86-64 systems with 16 GB o...

5.5CVSS5.9AI score0.00159EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.7 views

The vulnerability of the `core::fmt::write()` function in the arch/x86/Kconfig module of Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the core::fmt::write function in the arch/x86/Kconfig module of Linux kernels is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00154EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.7 views

The vulnerability in the arch/x86/kernel/fpu/regset.c component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the arch/x86/kernel/fpu/regset.c component of the Linux operating system is related to data type conversion errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.002EPSS
Exploits0References7Affected Software4
Ubuntu
Ubuntu
added 2025/05/16 3:39 p.m.7 views

USN-7510-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

7.8CVSS7.4AI score0.13036EPSS
Exploits1
Ubuntu
Ubuntu
added 2025/03/27 5:7 p.m.19 views

USN-7381-1: Linux kernel (Low Latency) vulnerabilities

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service system crash or possibly execute arbitrary code...

8.1CVSS7.8AI score0.00737EPSS
Exploits3
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.7 views

The vulnerability of the nested_svm_get_tdp_pdptr() function in the arch/x86/kvm/svm/nested.c module of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the nestedsvmgettdppdptr function in the arch/x86/kvm/svm/nested.c module of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of the protect...

7.1CVSS6.8AI score0.00243EPSS
Exploits0References22Affected Software7
Ubuntu
Ubuntu
added 2025/02/27 4:31 p.m.23 views

USN-7289-4: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - x86 architecture; - Block layer subsystem; - ACPI drivers; - GPU drivers; - HID subsystem; -...

7.8CVSS7.5AI score0.03301EPSS
Exploits2
Ubuntu
Ubuntu
added 2025/02/26 11:45 a.m.23 views

USN-7305-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - x86 architecture; - Block layer subsystem; - ACPI drivers; - GPU drivers; - HID subsystem; -...

7.8CVSS7.5AI score0.03301EPSS
Exploits2
Ubuntu
Ubuntu
added 2024/12/20 12:51 p.m.57 views

USN-7166-3: Linux kernel (HWE) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - RISC-V architecture; - S390 architecture; - x86 architecture; - Block layer subsystem; - ACPI...

9.1CVSS7.4AI score0.01367EPSS
Exploits0
Ubuntu
Ubuntu
added 2024/11/01 11:48 a.m.28 views

USN-7089-1: Linux kernel vulnerabilities

Chenyuan Yang discovered that the USB Gadget subsystem in the Linux kernel did not properly check for the device to be enabled before writing. A local attacker could possibly use this to cause a denial of service. CVE-2024-25741 Several security issues were discovered in the Linux kernel. An...

7.8CVSS7AI score0.00478EPSS
Exploits4
Ubuntu
Ubuntu
added 2024/09/23 4:18 p.m.27 views

USN-7029-1: Linux kernel vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 It was discovered that the JFS file system contained an...

9.8CVSS7.5AI score0.02701EPSS
Exploits3
Ubuntu
Ubuntu
added 2024/09/13 8:1 a.m.23 views

USN-7003-3: Linux kernel vulnerabilities

It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service system crash. CVE-2024-40902 Several security issues were discovered in the Linux kernel. An attacker could...

7.8CVSS7AI score0.00322EPSS
Exploits1
Ubuntu
Ubuntu
added 2024/09/12 1:23 p.m.33 views

USN-7004-1: Linux kernel vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 It was discovered that the JFS file system contained an...

9.8CVSS7.5AI score0.02701EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2024/09/11 1:10 a.m.4 views

kernel: x86: stop playing stack games in profile_pc()

In the Linux kernel, the following vulnerability has been resolved: x86: stop playing stack games in profilepc The 'profilepc' function is used for timer-based profiling, which isn't really all that relevant any more to begin with, but it also ends up making assumptions based on the stack layout...

5.5CVSS6.8AI score0.00238EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2024/08/16 7:0 a.m.11 views

x86/bhi: Avoid warning in #DB handler due to BHI mitigation

...

5.5CVSS6.6AI score0.00219EPSS
Exploits0
Ubuntu
Ubuntu
added 2024/07/12 10:2 a.m.63 views

USN-6895-1: Linux kernel vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the HugeTLB file syst...

7.8CVSS7.4AI score0.00756EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 3:58 a.m.2 views

SUSE CVE-2020-12768

An issue was discovered in the Linux kernel before 5.6. svmcpuuninit in arch/x86/kvm/svm.c has a memory leak, aka CID-d80b64ff297e. NOTE: third parties dispute this issue because it's a one-time leak at the boot, the size is negligible, and it can't be triggered at will...

5.5CVSS6.6AI score0.00392EPSS
Exploits0References9
Rows per page
Query Builder