108 matches found
CVE-2026-10097 ML-KEM-1024 x64 AVX2 incomplete cipher text comparison enables IND-CCA2 break and static private-key recovery
wolfSSL's AVX2-optimized ML-KEM implementation mlkemcmpavx2 compares only 1536 of the 1568 ciphertext bytes during the Fujisaki-Okamoto re-encryption check in ML-KEM-1024 decapsulation. Ciphertexts that differ from the expected re-encryption solely in bytes 1536-1567 bypass implicit rejection and...
CVE-2026-10097
wolfSSL's AVX2-optimized ML-KEM implementation mlkemcmpavx2 compares only 1536 of the 1568 ciphertext bytes during the Fujisaki-Okamoto re-encryption check in ML-KEM-1024 decapsulation. Ciphertexts that differ from the expected re-encryption solely in bytes 1536-1567 bypass implicit rejection and...
CVE-2026-43114
A flaw was found in the Linux kernel's netfilter component. This vulnerability, located in the nftsetpipapoavx2 functionality, is caused by incorrect data processing during AVX2 matching operations. This can lead to the system incorrectly identifying or matching network data entries within...
CVE-2026-43114
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetpipapoavx2: don't return non-matching entry on expiry New test case fails unexpectedly when avx2 matching functions are used. The test first loads a ranomly generated pipapo set with 'ipv4 . port' key, i.e. nft -...
ROS-20260304-73-0011
A vulnerability in the nfsetpipapoavx2 function of the Linux kernel is associated with a possible memory leak. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality of protected information...
OSV-2026-30 Use-of-uninitialized-value in vp9_quantize_fp_avx2
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=474614578 Crash type: Use-of-uninitialized-value Crash state: vp9quantizefpavx2 blockyrd vp9pickintermode...
EUVD-2022-0580
Malicious code in bioql PyPI...
EUVD-2017-12855
Malicious code in bioql PyPI...
EUVD-2022-33447
Malicious code in bioql PyPI...
EUVD-2025-30866
Malicious code in bioql PyPI...
CVE-2025-39867
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
Linux Distros Unpatched Vulnerability : CVE-2022-29017
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bento4 v1.6.0.0 was discovered to contain a segmentation fault via the component /x8664/multiarch/strlen- avx2.S. CVE-2022-29017 Note that Nessus relies on the...
SUSE CVE-2025-38120
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapoavx2: fix initial map fill If the first field doesn't cover the entire start map, then we must zero out the remainder, else we leak those bits into the next match round map. The early fix was incomplete and...
CVE-2025-38120
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapoavx2: fix initial map fill If the first field doesn't cover the entire start map, then we must zero out the remainder, else we leak those bits into the next match round map. The early fix was incomplete and...
PT-2025-27706
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the netfilter in the Linux kernel, specifically with the nf set pipapo avx2 function. The problem occurs when the first field does not cover the entire start ma...
CVE-2022-29017
Bento4 v1.6.0.0 was discovered to contain a segmentation fault via the component /x8664/multiarch/strlen-avx2.S...
[SECURITY] Fedora 41 Update: llama-cpp-b3561-1.fc41
The main goal of llama.cpp is to run the LLaMA model using 4-bit integer quantization on a MacBook Plain C/C++ implementation without dependencies Apple silicon first-class citizen - optimized via ARM NEON, Accelerate and Metal frameworks AVX, AVX2 and AVX512 support for x86 architectures Mixed F...
[SECURITY] Fedora 40 Update: llama-cpp-b3561-1.fc40
The main goal of llama.cpp is to run the LLaMA model using 4-bit integer quantization on a MacBook Plain C/C++ implementation without dependencies Apple silicon first-class citizen - optimized via ARM NEON, Accelerate and Metal frameworks AVX, AVX2 and AVX512 support for x86 architectures Mixed F...
CVE-2024-31510
An issue in Open Quantum Safe liboqs v.10.0 allows a remote attacker to escalate privileges via the cryptosignsignature parameter in the /pqcrystals-dilithium-standardml-dsa-44-ipdavx2/sign.c component...
liboqs 安全漏洞
liboqs is an open source C library for quantum-safe cryptographic algorithms from Open Quantum Safe. A security vulnerability exists in liboqs version v.0.10.0, which stems from an elevation of privilege vulnerability in component /pqcrystals-dilithium-standardml-dsa-44-ipdavx2/sign.c. The...