Lucene search
K

28 matches found

OSV
OSV
added 4 days ago2 views

UBUNTU-CVE-2026-53354

In the Linux kernel, the following vulnerability has been resolved: arm64: errata: Mitigate TLBI errata on various Arm CPUs A number of CPUs developed by Arm suffer from errata whereby a broadcast TLBI;DSB sequence may complete before the global observation of writes which are translated by an...

5.7AI score0.00182EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.14 views

PT-2026-48243

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. To create and manage guests, domctl operations are used by the control domain, a possible Xenstore domain, or by a domain controlling a particular guest. Some of these...

6.5CVSS5.7AI score0.002EPSS
Exploits0References32
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.17 views

PT-2026-48244

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. To create and manage guests, domctl operations are used by the control domain, a possible Xenstore domain, or by a domain controlling a particular guest. Some of these...

6.5CVSS5.8AI score0.002EPSS
Exploits0References32
EUVD
EUVD
added 2026/04/03 6:31 p.m.4 views

EUVD-2026-18671

In the Linux kernel, the following vulnerability has been resolved: armmpam: Fix null pointer dereference when restoring bandwidth counters When an MSC supporting memory bandwidth monitoring is brought offline and then online, mpamrestorembwustate calls rismsmonread via ipi to restore the...

5.7AI score0.00107EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/03/06 9:4 p.m.9 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mm/slub: reset KASAN tag in deferfree before accessing freed memory When CONFIGSLUBTINY is enabled, kfreenolock calls kasanslabfree before deferfree. On ARM64 with MTE Memory Tagging Extension, kasanslabfree poisons the memory an...

7.8CVSS5.6AI score0.0012EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/03/03 11:25 p.m.155 views

pixel-tiktag-exploit

Memory Tagging Extension MTE and Speculative Execution Bypas...

6.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.7 views

PT-2026-22675

Name of the Vulnerable Software and Affected Versions versions prior to 2026-0027 Description An issue exists in the smmu detach dev function within arm-smmu-v3.c that may result in an out-of-bounds write due to a use-after-free condition. Successful exploitation of this issue could lead to local...

6.7CVSS6.2AI score0.00147EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : firefox-68.10.0-1.0.1.el7.AXS7 (AXSA:2020-210:14)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-210:14 advisory. Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 CVE-2020-12417 Mozilla: Information disclosure due to manipulated URL...

9.3CVSS8.5AI score0.03034EPSS
Exploits2References6
OSV
OSV
added 2025/12/30 12:17 p.m.14 views

OESA-2025-2887 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-v3-sva: Fix mm use-after-free We currently call arm64mmcontextput without holding a reference to the mm, which can result in use-after-free. Call...

8.5CVSS7.1AI score0.00391EPSS
Exploits2References16
Cvelist
Cvelist
added 2025/12/24 10:55 a.m.29 views

CVE-2023-53989 arm64: mm: fix VA-range sanity check

In the Linux kernel, the following vulnerability has been resolved: arm64: mm: fix VA-range sanity check Both createmappingnoalloc and updatemappingprot sanity-check their 'virt' parameter, but the check itself doesn't make much sense. The condition used today appears to be a historical accident...

0.00173EPSS
Exploits0References6
EUVD
EUVD
added 2025/12/08 6:30 p.m.6 views

EUVD-2025-201744

In multiple functions of arm-smmu-v3.c, there is a possible out-of-bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.6AI score0.00085EPSS
Exploits0References3
CVE
CVE
added 2025/10/07 3:19 p.m.22 views

CVE-2022-50510

CVE-2022-50510 affects the Linux kernel’s perf/smmuv3 component. The issue is a hotplug callback leak in arm_smmu_pmu_init(): when platform_driver_register() fails, the callback added by cpuhp_setup_state_multi() is not removed, potentially leaking a hotplug callback. The fix removes the callback...

5.5CVSS6.1AI score0.00147EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2025/10/07 3:19 p.m.4 views

CVE-2022-50510

In the Linux kernel, the following vulnerability has been resolved: perf/smmuv3: Fix hotplug callback leak in armsmmupmuinit armsmmupmuinit won't remove the callback added by cpuhpsetupstatemulti when platformdriverregister failed. Remove the callback by cpuhpremovemultistate in fail path. Simila...

5.5CVSS5.3AI score0.00147EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2025/09/26 12:0 a.m.6 views

NanoTag: Systems Support for Efficient Byte-Granular Overflow Detection on ARM MTE

Memory safety bugs, such as buffer overflows and use-after-frees, are the leading causes of software safety issues in production. Software-based approaches, e.g., Address Sanitizer ASAN, can detect such bugs with high precision, but with prohibitively high overhead. ARM's Memory Tagging Extension...

7.7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2025/09/23 11:7 a.m.5 views

Apple’s New Memory Integrity Enforcement

Apple has introduced a new hardware/software security feature in the iPhone 17: "Memory Integrity Enforcement," targeting the memory safety vulnerabilities that spyware products like Pegasus tend to use to get unauthorized system access. From Wired: In recent years, a movement has been steadily...

7.8AI score
Exploits0
OSV
OSV
added 2025/09/15 7:3 p.m.19 views

CLSA-2025-1757963029 kernel-uek: Fix of 194 CVEs

rds: tcp: block BH in TCP callbacks - kexec: Improve & fix crashexcludememrange to handle overlapping ranges - module: correctly exit modulekallsymsoneachsymbol when fn != 0 - module: potential uninitialized return in modulekallsymsoneachsymbol - module: use RCU to synchronize findmodule -...

9.8CVSS7.2AI score0.01483EPSS
Exploits12References1
OSV
OSV
added 2025/09/11 5:15 p.m.3 views

DEBIAN-CVE-2025-39739

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-qcom: Add SM6115 MDSS compatible Add the SM6115 MDSS compatible to clients compatible list, as it also needs that workaround. Without this workaround, for example, QRB4210 RB2 which is based on SM4250/SM6115...

5.5CVSS5.4AI score0.00145EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/21 12:0 a.m.4 views

The vulnerability of the nvidia_smmu_context_fault() function in the drivers/iommu/arm/arm-smmu/arm-smmu-nvidia.c module of the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the nvidiasmmucontextfault function in the drivers/iommu/arm/arm-smmu/arm-smmu-nvidia.c module of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.5CVSS6.4AI score0.00208EPSS
Exploits0References7Affected Software2
Microsoft CVE
Microsoft CVE
added 2025/03/08 8:0 a.m.5 views

iommu/arm-smmu: Defer probe of clients after smmu device bound

...

4.7CVSS7.2AI score0.00159EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2023-46837

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes...

3.3CVSS5.8AI score0.00241EPSS
Exploits0References3
Rows per page
Query Builder