28 matches found
UBUNTU-CVE-2026-53354
In the Linux kernel, the following vulnerability has been resolved: arm64: errata: Mitigate TLBI errata on various Arm CPUs A number of CPUs developed by Arm suffer from errata whereby a broadcast TLBI;DSB sequence may complete before the global observation of writes which are translated by an...
PT-2026-48243
This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. To create and manage guests, domctl operations are used by the control domain, a possible Xenstore domain, or by a domain controlling a particular guest. Some of these...
PT-2026-48244
This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. To create and manage guests, domctl operations are used by the control domain, a possible Xenstore domain, or by a domain controlling a particular guest. Some of these...
EUVD-2026-18671
In the Linux kernel, the following vulnerability has been resolved: armmpam: Fix null pointer dereference when restoring bandwidth counters When an MSC supporting memory bandwidth monitoring is brought offline and then online, mpamrestorembwustate calls rismsmonread via ipi to restore the...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: mm/slub: reset KASAN tag in deferfree before accessing freed memory When CONFIGSLUBTINY is enabled, kfreenolock calls kasanslabfree before deferfree. On ARM64 with MTE Memory Tagging Extension, kasanslabfree poisons the memory an...
pixel-tiktag-exploit
Memory Tagging Extension MTE and Speculative Execution Bypas...
PT-2026-22675
Name of the Vulnerable Software and Affected Versions versions prior to 2026-0027 Description An issue exists in the smmu detach dev function within arm-smmu-v3.c that may result in an out-of-bounds write due to a use-after-free condition. Successful exploitation of this issue could lead to local...
MiracleLinux 7 : firefox-68.10.0-1.0.1.el7.AXS7 (AXSA:2020-210:14)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-210:14 advisory. Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 CVE-2020-12417 Mozilla: Information disclosure due to manipulated URL...
OESA-2025-2887 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-v3-sva: Fix mm use-after-free We currently call arm64mmcontextput without holding a reference to the mm, which can result in use-after-free. Call...
CVE-2023-53989 arm64: mm: fix VA-range sanity check
In the Linux kernel, the following vulnerability has been resolved: arm64: mm: fix VA-range sanity check Both createmappingnoalloc and updatemappingprot sanity-check their 'virt' parameter, but the check itself doesn't make much sense. The condition used today appears to be a historical accident...
EUVD-2025-201744
In multiple functions of arm-smmu-v3.c, there is a possible out-of-bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2022-50510
CVE-2022-50510 affects the Linux kernel’s perf/smmuv3 component. The issue is a hotplug callback leak in arm_smmu_pmu_init(): when platform_driver_register() fails, the callback added by cpuhp_setup_state_multi() is not removed, potentially leaking a hotplug callback. The fix removes the callback...
CVE-2022-50510
In the Linux kernel, the following vulnerability has been resolved: perf/smmuv3: Fix hotplug callback leak in armsmmupmuinit armsmmupmuinit won't remove the callback added by cpuhpsetupstatemulti when platformdriverregister failed. Remove the callback by cpuhpremovemultistate in fail path. Simila...
NanoTag: Systems Support for Efficient Byte-Granular Overflow Detection on ARM MTE
Memory safety bugs, such as buffer overflows and use-after-frees, are the leading causes of software safety issues in production. Software-based approaches, e.g., Address Sanitizer ASAN, can detect such bugs with high precision, but with prohibitively high overhead. ARM's Memory Tagging Extension...
Apple’s New Memory Integrity Enforcement
Apple has introduced a new hardware/software security feature in the iPhone 17: "Memory Integrity Enforcement," targeting the memory safety vulnerabilities that spyware products like Pegasus tend to use to get unauthorized system access. From Wired: In recent years, a movement has been steadily...
CLSA-2025-1757963029 kernel-uek: Fix of 194 CVEs
rds: tcp: block BH in TCP callbacks - kexec: Improve & fix crashexcludememrange to handle overlapping ranges - module: correctly exit modulekallsymsoneachsymbol when fn != 0 - module: potential uninitialized return in modulekallsymsoneachsymbol - module: use RCU to synchronize findmodule -...
DEBIAN-CVE-2025-39739
In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-qcom: Add SM6115 MDSS compatible Add the SM6115 MDSS compatible to clients compatible list, as it also needs that workaround. Without this workaround, for example, QRB4210 RB2 which is based on SM4250/SM6115...
The vulnerability of the nvidia_smmu_context_fault() function in the drivers/iommu/arm/arm-smmu/arm-smmu-nvidia.c module of the Linux kernel allows a hacker to trigger a service failure.
The vulnerability of the nvidiasmmucontextfault function in the drivers/iommu/arm/arm-smmu/arm-smmu-nvidia.c module of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
iommu/arm-smmu: Defer probe of clients after smmu device bound
...
Linux Distros Unpatched Vulnerability : CVE-2023-46837
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes...