Lucene search
+L

59 matches found

Debian CVE
Debian CVE
added 2024/11/19 1:30 a.m.11 views

CVE-2024-50275

In the Linux kernel, the following vulnerability has been resolved: arm64/sve: Discard stale CPU state when handling SVE traps The logic for handling SVE traps manipulates saved FPSIMD/SVE state incorrectly, and a race with preemption can result in a task having TIFSVE set and TIFFOREIGNFPSTATE...

7CVSS5.9AI score0.00237EPSS
Exploits0
CVE
CVE
added 2024/11/19 1:30 a.m.150 views

CVE-2024-50275

The CVE (CVE-2024-50275) affects the Linux kernel on arm64 with SVE traps. A race allows stale FPSIMD/SVE state to be reused across preemption, leading to SVE traps while TIF_SVE is set and potentially incorrect live state handling. The fix detaches from the saved CPU state when not live by calli...

7CVSS6.5AI score0.00237EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2024/11/19 1:30 a.m.25 views

CVE-2024-50275 arm64/sve: Discard stale CPU state when handling SVE traps

In the Linux kernel, the following vulnerability has been resolved: arm64/sve: Discard stale CPU state when handling SVE traps The logic for handling SVE traps manipulates saved FPSIMD/SVE state incorrectly, and a race with preemption can result in a task having TIFSVE set and TIFFOREIGNFPSTATE...

7CVSS6.5AI score0.00237EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2024/07/10 12:0 a.m.13 views

PT-2024-32172

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the Linux kernel, where the lwt seg6 related BPF ops can be invoked via bpf test run without entering input action end bpf first. This is because the per-CPU...

5.5CVSS5.5AI score0.00205EPSS
Exploits0
OSV
OSV
added 2024/06/20 12:15 p.m.3 views

DEBIAN-CVE-2022-48763

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Forcibly leave nested virt when SMM state is toggled Forcibly leave nested virtualization operation if userspace toggles SMM state via KVMSETVCPUEVENTS or KVMSYNCX86EVENTS. If userspace forces the vCPU out of SMM while...

5.5CVSS5.1AI score0.00219EPSS
Exploits0References1
CVE
CVE
added 2024/06/20 11:13 a.m.87 views

CVE-2022-48763

CVE-2022-48763 relates to the Linux kernel KVM/x86 nested virtualization when SMM state is toggled. The issue occurs if userspace forces a vCPU out of SMM during post-VMXON and injects an SMI, causing vmx_enter_smm() to overwrite vmx->nested.smm.vmxon and leave vmxon and smm.vmxon false while ...

5.5CVSS6.2AI score0.00219EPSS
Exploits0References4Affected Software1
RedHat Linux
RedHat Linux
added 2022/11/15 11:55 a.m.6 views

kernel: netfilter: use get_random_u32 instead of prandom

In the Linux kernel, the following vulnerability has been resolved: netfilter: use getrandomu32 instead of prandom bh might occur while updating per-cpu rndstate from user context, ie. localout path. BUG: using smpprocessorid in preemptible 00000000 code: nginx/2725 caller is...

7.8CVSS6AI score0.0029EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/06/08 12:0 a.m.10 views

PT-2025-8631

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue was related to the use of prandom instead of get random u32 in the netfilter component. This could potentially lead to a...

7.8CVSS7.6AI score0.0029EPSS
Exploits1References58
OSV
OSV
added 2020/12/15 5:15 p.m.4 views

ALPINE-CVE-2020-29571

An issue was discovered in Xen through 4.14.x. A bounds check common to most operation time functions specific to FIFO event channels depends on the CPU observing consistent state. While the producer side uses appropriately ordered writes, the consumer side isn't protected against re-ordered read...

6.2CVSS6.7AI score0.00379EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/11/08 12:0 a.m.22 views

Rockwellautomation Micrologix Unspecified Vulnerability

An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...

7.5CVSS1.6AI score0.36642EPSS
Exploits1References2
CNVD
CNVD
added 2018/04/08 12:0 a.m.5 views

Allen Bradley Micrologix 1400 Series B FRN Access Control Vulnerability (CNVD-2018-08285)

Allen Bradley Micrologix 1400 Series B FRN is a programmable logic controller from Rockwell Automation. An access control vulnerability exists in the data, program, and function file permissions functions in the Allen Bradley Micrologix 1400 Series B FRN version 21.2 and earlier. An attacker coul...

10CVSS6.8AI score0.36642EPSS
Exploits1References1
OSV
OSV
added 2018/04/05 9:29 p.m.6 views

CVE-2017-14467

An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...

9.8CVSS5.7AI score0.36642EPSS
Exploits1References1
securityvulns
securityvulns
added 2003/11/21 12:0 a.m.28 views

Linux Kernel <= 2.4.21 MXCSR Local DOS Exploitation

As I mentioned in my previous post to the list, I've been looking into x87 FPU stuff lately. While I was tinkering I ran into the MXCSR register, which reminded me of an old RedHat advisory with a vague description of a kernel vuln relating to the register. I don't recall anyone ever discussing...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2003/11/21 12:0 a.m.46 views

Multiple bugs in linux kernel

new kernel version fixes DoS in TCP/IP stack by isuing amount of packets with same hash value and privelege escalation in ioperm call. mxcsr CPU state modification, TTY level DoS, multiple etherleaks...

3.4AI score
Exploits0References3Affected Software1
OSV
OSV
added 2003/06/27 12:0 a.m.141 views

DSA-332 linux-kernel-2.4.17 - several vulnerabilities

Bulletin has no description...

10CVSS5.2AI score0.73006EPSS
Exploits20
RedHat Linux
RedHat Linux
added 2003/06/19 1:55 p.m.48 views

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages for Red Hat Enterprise Linux are now available which address several security vulnerabilities. The Linux kernel handles the basic functions of the operating system. Several security issues have been found that affect the Linux kernel: Al Viro found a security issue in the...

10CVSS6AI score0.03723EPSS
Exploits1References1
NVD
NVD
added 2003/06/16 4:0 a.m.22 views

CVE-2003-0248

The mxcsr code in Linux kernel 2.4 allows attackers to modify CPU state registers via a malformed address...

10CVSS6.1AI score0.03723EPSS
Exploits0References11
CVE
CVE
added 2003/06/05 4:0 a.m.95 views

CVE-2003-0248

CVE-2003-0248 affects the Linux kernel 2.4 series; the issue is in the mxcsr code, allowing an attacker to modify CPU state registers via a malformed address. Per available data, the impact is rated as complete confidentiality, integrity, and availability (base CVSS v2 score 10.0). The provided d...

10CVSS6AI score0.03723EPSS
Exploits0References11Affected Software1
Cvelist
Cvelist
added 2003/06/05 4:0 a.m.30 views

CVE-2003-0248

The mxcsr code in Linux kernel 2.4 allows attackers to modify CPU state registers via a malformed address...

6AI score0.03723EPSS
Exploits0References11
Rows per page
Query Builder