Kata Containers coco-tdx malicious host can circumvent initdata verification

...

The vulnerability of the handle_mmio() function in the Linux operating system allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the handlemmio function in the arch/x86/coco/tdx/tdx.c module of the Linux operating system’s kernel is related to the lack of address validation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

Ubuntu 22.04 LTS / 23.10 : Linux kernel vulnerabilities (USN-6680-2)

The remote Ubuntu 22.04 LTS / 23.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6680-2 advisory. discovered that the NFC Controller Interface NCI implementation in the Linux kernel did not properly handle certain memory allocation failure...

Code injection

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/memencryptamd.c...

CVE-2024-25744

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/memencryptamd.c...