Lucene search
K

49 matches found

RedhatCVE
RedhatCVE
added 2026/06/26 9:14 a.m.5 views

CVE-2026-53243

A flaw was found in the Linux kernel. An uninitialized stack variable in the rseqexituserupdate function can lead to an information leak. This occurs due to an indeterminate sequencing of expressions during the initialization of the rseqids structure, where ids.nodeid is assigned using an...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/06/26 2:10 a.m.7 views

SUSE CVE-2026-53187

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpuid against nrcpuids in DMAH alloc The cpuid attribute supplied by user space through UVERBSATTRALLOCDMAHCPUID is passed directly to cpumasktestcpu without first verifying that the value is within the valid...

7.1CVSS5.8AI score0.00129EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/25 11:53 p.m.6 views

CVE-2026-53187

A flaw was found in the Linux kernel's RDMA/core component. A local attacker could supply an invalid cpuid through the UVERBSATTRALLOCDMAHCPUID attribute without proper validation. This improper validation could lead to an out-of-bounds read of the cpumask bitmap. On systems configured with...

7.1CVSS5.8AI score0.00129EPSS
Exploits0References4
NVD
NVD
added 2026/06/25 9:16 a.m.7 views

CVE-2026-53187

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpuid against nrcpuids in DMAH alloc The cpuid attribute supplied by user space through UVERBSATTRALLOCDMAHCPUID is passed directly to cpumasktestcpu without first verifying that the value is within the valid...

7.1CVSS0.00129EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 9:16 a.m.4 views

UBUNTU-CVE-2026-53187

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpuid against nrcpuids in DMAH alloc The cpuid attribute supplied by user space through UVERBSATTRALLOCDMAHCPUID is passed directly to cpumasktestcpu without first verifying that the value is within the valid...

7.1CVSS5.7AI score0.00129EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/25 8:39 a.m.29 views

CVE-2026-53187 RDMA/core: Validate cpu_id against nr_cpu_ids in DMAH alloc

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpuid against nrcpuids in DMAH alloc The cpuid attribute supplied by user space through UVERBSATTRALLOCDMAHCPUID is passed directly to cpumasktestcpu without first verifying that the value is within the valid...

7.1CVSS0.00129EPSS
Exploits0References3
CVE
CVE
added 2026/06/25 8:39 a.m.12 views

CVE-2026-53187

The CVE-2026-53187 issue affects the Linux kernel RDMA/core: the cpu_id supplied via UVERBS_ATTR_ALLOC_DMAH_CPU_ID is passed to cpumask_test_cpu() without validating it against nr_cpu_ids, leading to an out-of-bounds read of the cpumask bitmap. On kernels built with CONFIG_DEBUG_PER_CPU_MAPS this...

7.1CVSS5.7AI score0.00129EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/06/25 8:39 a.m.3 views

CVE-2026-53187 RDMA/core: Validate cpu_id against nr_cpu_ids in DMAH alloc

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpuid against nrcpuids in DMAH alloc The cpuid attribute supplied by user space through UVERBSATTRALLOCDMAHCPUID is passed directly to cpumasktestcpu without first verifying that the value is within the valid...

7.1CVSS5.8AI score0.00129EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/25 8:39 a.m.8 views

EUVD-2026-39278

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpuid against nrcpuids in DMAH alloc The cpuid attribute supplied by user space through UVERBSATTRALLOCDMAHCPUID is passed directly to cpumasktestcpu without first verifying that the value is within the valid...

5.7AI score0.00129EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.12 views

PT-2026-52283

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the RDMA/core component where the cpu id attribute, provided by user space via UVERBS ATTR ALLOC DMAH CPU ID, is passed to the cpumask test cpu function without...

7.1CVSS5.9AI score0.00129EPSS
Exploits0References16
EUVD
EUVD
added 2026/05/06 12:30 p.m.9 views

EUVD-2026-27669

In the Linux kernel, the following vulnerability has been resolved: mailbox: mchp-ipc-sbi: fix out-of-bounds access in mchpipcgetclusteraggrirq The clustercfg array is dynamically allocated to hold per-CPU configuration structures, with its size based on the number of online CPUs. Previously, thi...

5.7AI score0.00131EPSS
Exploits0References4
CVE
CVE
added 2026/05/06 11:28 a.m.13 views

CVE-2026-43274

Summary (validated by connected docs): In the Linux kernel, the mailbox subsystem (mchp-ipc-sbi) had an out-of-bounds access in mchp_ipc_get_cluster_aggr_irq() caused by indexing the dynamically allocated cluster_cfg array with hartid (potentially non-contiguous/ out of range). The fix switches t...

8.4CVSS5.7AI score0.00131EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.9 views

PT-2026-37614

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds access issue exists in the mchp ipc get cluster aggr irq function. The cluster cfg array, which is dynamically allocated for per-CPU configuration structures based on th...

8.4CVSS7.4AI score0.00131EPSS
Exploits0References11
NVD
NVD
added 2026/05/01 2:16 p.m.5 views

CVE-2026-31697

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed When retrieving the ID for the CPU, don't attempt to copy the ID blob to userspace if the firmware command failed. If the failure was due to an invalid...

7.1CVSS0.00126EPSS
Exploits0References8
GithubExploit
GithubExploit
added 2026/04/26 6:18 p.m.396 views

denuOwO-hypervisor-vulnerabilities

DenuOwO SVM/VMX Hypervisor — 6 Vulnerabilities PoC + Analysis...

6.4AI score
Exploits0
SUSE CVE
SUSE CVE
added 2026/04/25 1:39 a.m.5 views

SUSE CVE-2026-31558

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Make kvmgetvcpubycpuid more robust kvmgetvcpubycpuid takes a cpuid parameter whose type is int, so cpuid can be negative. Let kvmgetvcpubycpuid return NULL for this case so as to make it more robust. This fix an...

8.8CVSS5.5AI score0.00129EPSS
Exploits0References3
CVE
CVE
added 2026/04/24 2:35 p.m.14 views

CVE-2026-31569

The CVE-2026-31569 issue affects the Linux kernel’s LoongArch KVM path, where EIOINTC's coremap can be empty in eiointc_update_sw_coremap(), causing an out-of-bounds access to kvm_arch::phyid_map::phys_map[]. The described impact is system instability or a crash, with potential information disclo...

7.3CVSS5.4AI score0.0012EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/04/24 2:35 p.m.4 views

EUVD-2026-25462

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Handle the case that EIOINTC's coremap is empty EIOINTC's coremap in eiointcupdateswcoremap can be empty, currently we get a cpuid with -1 in this case, but we actually need 0 because it's similar as the case that...

5.4AI score0.0012EPSS
Exploits0References3
CVE
CVE
added 2026/04/24 2:35 p.m.17 views

CVE-2026-31558

The CVE-2026-31558 issue affects the Linux kernel LoongArch KVM component. The vulnerable code is kvm_get_vcpu_by_cpuid(), which accepts a cpuid as int; if cpuid is negative, the function could access kvm_arch::phyid_map::phys_map[] out of bounds. The documented fix makes kvm_get_vcpu_by_cpuid() ...

8.8CVSS5.4AI score0.00129EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/04/24 2:35 p.m.1 views

CVE-2026-31558 LoongArch: KVM: Make kvm_get_vcpu_by_cpuid() more robust

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Make kvmgetvcpubycpuid more robust kvmgetvcpubycpuid takes a cpuid parameter whose type is int, so cpuid can be negative. Let kvmgetvcpubycpuid return NULL for this case so as to make it more robust. This fix an...

8.8CVSS6.6AI score0.00129EPSS
Exploits0References7
Rows per page
Query Builder