Lucene search
K

209 matches found

Cvelist
Cvelist
added 2026/06/25 7:58 p.m.20 views

CVE-2026-10512 X25519 x86_64 assembly final reduction leaves non-canonical field element

The X25519 x8664 assembly implementation fails to clear the most significant bit during the final modular reduction, so the computed result may not be fully reduced modulo the field prime 2^255 - 19. This can leave the field element in a non-canonical form, producing an incorrect result from the...

2.3CVSS0.00263EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iommufd: The “end” field should be set correctly when performing batch carry operations. Although the test suite covers this issue, it was somehow overlooked that this behavior was incorrect. The test...

5.8AI score0.00189EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.12 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iommufd: Do not corrupt the pfn list when doing batch carry If batch-end is 0, then setting npfns0 before computing the new value of pfns will fail to adjust the pfn, resulting in various page accounting corruptions. This operati...

5.5CVSS5.3AI score0.00128EPSS
Exploits0References2
OSV
OSV
added 2026/05/27 2:17 p.m.5 views

UBUNTU-CVE-2026-46101

In the Linux kernel, the following vulnerability has been resolved: netfilter: reject zero shift in nftbitwise Reject zero shift operands for nftbitwise left and right shift expressions during initialization. The carry propagation logic computes the carry from the adjacent 32-bit word using...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References5
OSV
OSV
added 2026/04/27 6:33 p.m.10 views

JLSEC-2026-226 There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms...

There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of the TLS 1.3 default curves. Impact was not analyzed in detail, because the pre-requisites for attack are considered unlikely and include reusing private keys. Analysis...

5.9CVSS6.6AI score0.03803EPSS
Exploits0References16
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/12 2:42 p.m.9 views

Security Bulletin: Multiple Security Vulnerabilities in IBM Sterling Partner Engagement Manager

Summary Multiple vulnerabilities were addressed in IBM Sterling Partner Engagement Manager versions 6.2.3.6 and 6.2.4.3. Vulnerability Details CVEID:CVE-2016-1000338 DESCRIPTION: In Bouncy Castle JCE Provider version 1.55 and earlier the DSA does not fully validate ASN.1 encoding of signature on...

9.8CVSS7.2AI score0.19442EPSS
Exploits4Affected Software1
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.7 views

Astra Linux – Vulnerability in Botan

Before version 3.6.0, when certain GCC versions were used, Botan had a compiler-induced operation that relied on secrets in the donna128.h file of lib/utils. This operation was used in Chacha-Poly1305 and x25519. An addition operation could be skipped if a carry wasn’t set. This issue was observe...

5.9CVSS6.3AI score0.00542EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/01/09 11:36 a.m.3 views

CVE-2021-41612

An issue was discovered in the ALU unit of the OpenRISC mor1kx processor. The carry flag is not being updated correctly for the subtract instruction, which results in an incorrect value of the carry flag. Any software that relies on this flag may experience corruption in execution...

8.8CVSS7AI score0.01146EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2025/12/25 12:56 a.m.4 views

SUSE CVE-2023-54060

In the Linux kernel, the following vulnerability has been resolved: iommufd: Set end correctly when doing batch carry Even though the test suite covers this it somehow became obscured that this wasn't working. The test iommufdioas.mockdomain.accessdomaindestory would blow up rarely. end should be...

5.5CVSS6.2AI score0.00189EPSS
Exploits0References17
EUVD
EUVD
added 2025/12/24 3:30 p.m.6 views

EUVD-2023-60266

In the Linux kernel, the following vulnerability has been resolved: iommufd: Set end correctly when doing batch carry Even though the test suite covers this it somehow became obscured that this wasn't working. The test iommufdioas.mockdomain.accessdomaindestory would blow up rarely. end should be...

5.7AI score0.00189EPSS
Exploits0References3
NVD
NVD
added 2025/12/24 1:16 p.m.3 views

CVE-2023-54060

In the Linux kernel, the following vulnerability has been resolved: iommufd: Set end correctly when doing batch carry Even though the test suite covers this it somehow became obscured that this wasn't working. The test iommufdioas.mockdomain.accessdomaindestory would blow up rarely. end should be...

0.00189EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.2 views

CVE-2023-54060

In the Linux kernel, the following vulnerability has been resolved: iommufd: Set end correctly when doing batch carry Even though the test suite covers this it somehow became obscured that this wasn't working. The test iommufdioas.mockdomain.accessdomaindestory would blow up rarely. end should be...

5.7AI score0.00189EPSS
Exploits0References3
CVE
CVE
added 2025/12/24 12:23 p.m.12 views

CVE-2023-54060

CVE-2023-54060 is a Linux kernel vulnerability in the iommufd subsystem where end was not set correctly during batch carry, which could trigger a NULL pointer dereference in batch_unpin. Public advisories (Red Hat, ENISA EUVD, and OSV) confirm the issue and indicate a fix has been applied in the ...

5.8AI score0.00189EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/24 12:23 p.m.23 views

CVE-2023-54060 iommufd: Set end correctly when doing batch carry

In the Linux kernel, the following vulnerability has been resolved: iommufd: Set end correctly when doing batch carry Even though the test suite covers this it somehow became obscured that this wasn't working. The test iommufdioas.mockdomain.accessdomaindestory would blow up rarely. end should be...

0.00189EPSS
Exploits0References2
OSV
OSV
added 2025/12/24 12:23 p.m.4 views

CVE-2023-54060 iommufd: Set end correctly when doing batch carry

In the Linux kernel, the following vulnerability has been resolved: iommufd: Set end correctly when doing batch carry Even though the test suite covers this it somehow became obscured that this wasn't working. The test iommufdioas.mockdomain.accessdomaindestory would blow up rarely. end should be...

6.1AI score0.00189EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an end flag not being set correctly in a batch carry operation, which could result in a null pointer dereference...

6.2AI score0.00189EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-12853

Malware in sbrugna...

6.5CVSS7.8AI score0.10133EPSS
Exploits0References34
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-8495

Malware in sbrugna...

7.5CVSS7.6AI score0.02627EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-0679

Malware in sbrugna...

7.5CVSS7.6AI score0.02241EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-8674

Malware in sbrugna...

9.8CVSS9.2AI score0.02791EPSS
Exploits0References16
Rows per page
Query Builder