Lucene search
K

17 matches found

OSV
OSV
added 2026/01/28 4:16 p.m.10 views

CVE-2026-23553

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CPU A, running task ...

2.9CVSS5.8AI score
Exploits0References3
CVE
CVE
added 2026/01/28 3:33 p.m.24 views

CVE-2026-23553

CVE-2026-23553 is an issue in the Xen hypervisor: during context switches, Xen may skip IBPB when a vCPU returns to the same physical CPU, potentially allowing stale BTB/GPU state to persist across tasks and undermine guest kernel isolation. The advisory chain shows the vulnerability is tied to i...

2.9CVSS5.9AI score0.00129EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2026/01/28 3:33 p.m.5 views

CVE-2026-23553

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CPU A, running task ...

2.9CVSS5.5AI score0.00129EPSS
Exploits0References3
OSV
OSV
added 2026/01/13 4:16 p.m.9 views

AZL-74309 CVE-2025-71078 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s/slb: Fix SLB multihit issue during SLB preload On systems using the hash MMU, there is a software SLB preload cache that mirrors the entries loaded into the hardware SLB buffer. This preload cache is subject to period...

7.8CVSS5.6AI score0.0012EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/01/13 4:16 p.m.5 views

CVE-2025-71078

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s/slb: Fix SLB multihit issue during SLB preload On systems using the hash MMU, there is a software SLB preload cache that mirrors the entries loaded into the hardware SLB buffer. This preload cache is subject to period...

7.8CVSS5.7AI score0.0012EPSS
Exploits0References36
CVE
CVE
added 2026/01/13 3:34 p.m.23 views

CVE-2025-71078

CVE-2025-71078 describes a Linux kernel fix for a SLB multihit issue on hash MMU POWERPC 64s. The root cause is a mismatch between the hardware SLB and the software preload cache when the kernel optimizes switch_mm_irqs_off by not calling switch_mmu_context() if prev and next mm_struct are the sa...

7.8CVSS5.9AI score0.0012EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/01/13 3:34 p.m.24 views

CVE-2025-71078 powerpc/64s/slb: Fix SLB multihit issue during SLB preload

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s/slb: Fix SLB multihit issue during SLB preload On systems using the hash MMU, there is a software SLB preload cache that mirrors the entries loaded into the hardware SLB buffer. This preload cache is subject to period...

0.0012EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/01/13 3:34 p.m.4 views

CVE-2025-71078

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s/slb: Fix SLB multihit issue during SLB preload On systems using the hash MMU, there is a software SLB preload cache that mirrors the entries loaded into the hardware SLB buffer. This preload cache is subject to period...

5.3AI score0.0012EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.6 views

PT-2026-2599

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the powerpc/64s/slb subsystem related to the SLB preload cache on systems utilizing a hash MMU. Specifically, inconsistencies can arise between the...

7.8CVSS5.4AI score0.0012EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/11/13 4:2 p.m.10 views

CVE-2025-40160

In the Linux kernel, the following vulnerability has been resolved: xen/events: Return -EEXIST for bound VIRQs Change findvirq to return -EEXIST when a VIRQ is bound to a different CPU than the one passed in. With that, remove the BUGON from bindvirqtoirq to propogate the error upwards. Some VIRQ...

5.5CVSS5.8AI score0.00182EPSS
Exploits0References4
OSV
OSV
added 2025/11/12 11:15 a.m.11 views

UBUNTU-CVE-2025-40160

In the Linux kernel, the following vulnerability has been resolved: xen/events: Return -EEXIST for bound VIRQs Change findvirq to return -EEXIST when a VIRQ is bound to a different CPU than the one passed in. With that, remove the BUGON from bindvirqtoirq to propogate the error upwards. Some VIRQ...

5.7AI score0.00182EPSS
Exploits0References21
CVE
CVE
added 2025/11/12 10:24 a.m.22 views

CVE-2025-40160

CVE-2025-40160: In the Linux kernel Xen event handling, find_virq() now returns -EEXIST when a VIRQ bound to a different CPU, replacing the previous BUG_ON() path. This affects per-domain/global VIRQs (which must be bound to CPU0 before migration). A second bind for per-domain/global VIRQs is tre...

5.8AI score0.00182EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/06/23 8:41 a.m.5 views

CVE-2022-50100

In the Linux kernel, the following vulnerability has been resolved: sched/core: Do not requeue task on CPU excluded from cpusmask The following warning was triggered on a large machine early in boot on a distribution kernel but the same problem should also affect mainline. WARNING: CPU: 439 PID: ...

5.5CVSS7.1AI score0.00208EPSS
Exploits0References4
OSV
OSV
added 2025/03/06 4:15 p.m.4 views

UBUNTU-CVE-2024-58057

In the Linux kernel, the following vulnerability has been resolved: idpf: convert workqueues to unbound When a workqueue is created with WQUNBOUND, its work items are served by special worker-pools, whose host workers are not bound to any specific CPU. In the default configuration i.e. when...

5.5CVSS6.6AI score0.00169EPSS
Exploits0References18
Cvelist
Cvelist
added 2024/08/17 9:9 a.m.30 views

CVE-2024-42300 erofs: fix race in z_erofs_get_gbuf()

In the Linux kernel, the following vulnerability has been resolved: erofs: fix race in zerofsgetgbuf In zerofsgetgbuf, the current task may be migrated to another CPU between zerofsgbufid and spinlock&gbuf-lock. Therefore, zerofsputgbuf will trigger the following issue which was found by stress...

0.00136EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2018/09/25 8:22 p.m.127 views

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise MRG 2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.8CVSS6.7AI score0.7354EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/09/25 7:6 p.m.95 views

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.8CVSS7.5AI score0.14806EPSS
Exploits6References4
Rows per page
Query Builder