59 matches found
CVE-2024-50275
In the Linux kernel, the following vulnerability has been resolved: arm64/sve: Discard stale CPU state when handling SVE traps The logic for handling SVE traps manipulates saved FPSIMD/SVE state incorrectly, and a race with preemption can result in a task having TIFSVE set and TIFFOREIGNFPSTATE...
CVE-2024-50275
The CVE (CVE-2024-50275) affects the Linux kernel on arm64 with SVE traps. A race allows stale FPSIMD/SVE state to be reused across preemption, leading to SVE traps while TIF_SVE is set and potentially incorrect live state handling. The fix detaches from the saved CPU state when not live by calli...
CVE-2024-50275 arm64/sve: Discard stale CPU state when handling SVE traps
In the Linux kernel, the following vulnerability has been resolved: arm64/sve: Discard stale CPU state when handling SVE traps The logic for handling SVE traps manipulates saved FPSIMD/SVE state incorrectly, and a race with preemption can result in a task having TIFSVE set and TIFFOREIGNFPSTATE...
PT-2024-32172
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the Linux kernel, where the lwt seg6 related BPF ops can be invoked via bpf test run without entering input action end bpf first. This is because the per-CPU...
DEBIAN-CVE-2022-48763
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Forcibly leave nested virt when SMM state is toggled Forcibly leave nested virtualization operation if userspace toggles SMM state via KVMSETVCPUEVENTS or KVMSYNCX86EVENTS. If userspace forces the vCPU out of SMM while...
CVE-2022-48763
CVE-2022-48763 relates to the Linux kernel KVM/x86 nested virtualization when SMM state is toggled. The issue occurs if userspace forces a vCPU out of SMM during post-VMXON and injects an SMI, causing vmx_enter_smm() to overwrite vmx->nested.smm.vmxon and leave vmxon and smm.vmxon false while ...
kernel: netfilter: use get_random_u32 instead of prandom
In the Linux kernel, the following vulnerability has been resolved: netfilter: use getrandomu32 instead of prandom bh might occur while updating per-cpu rndstate from user context, ie. localout path. BUG: using smpprocessorid in preemptible 00000000 code: nginx/2725 caller is...
PT-2025-8631
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue was related to the use of prandom instead of get random u32 in the netfilter component. This could potentially lead to a...
ALPINE-CVE-2020-29571
An issue was discovered in Xen through 4.14.x. A bounds check common to most operation time functions specific to FIFO event channels depends on the CPU observing consistent state. While the producer side uses appropriately ordered writes, the consumer side isn't protected against re-ordered read...
Rockwellautomation Micrologix Unspecified Vulnerability
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
Allen Bradley Micrologix 1400 Series B FRN Access Control Vulnerability (CNVD-2018-08285)
Allen Bradley Micrologix 1400 Series B FRN is a programmable logic controller from Rockwell Automation. An access control vulnerability exists in the data, program, and function file permissions functions in the Allen Bradley Micrologix 1400 Series B FRN version 21.2 and earlier. An attacker coul...
CVE-2017-14467
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
Linux Kernel <= 2.4.21 MXCSR Local DOS Exploitation
As I mentioned in my previous post to the list, I've been looking into x87 FPU stuff lately. While I was tinkering I ran into the MXCSR register, which reminded me of an old RedHat advisory with a vague description of a kernel vuln relating to the register. I don't recall anyone ever discussing...
Multiple bugs in linux kernel
new kernel version fixes DoS in TCP/IP stack by isuing amount of packets with same hash value and privelege escalation in ioperm call. mxcsr CPU state modification, TTY level DoS, multiple etherleaks...
DSA-332 linux-kernel-2.4.17 - several vulnerabilities
Bulletin has no description...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages for Red Hat Enterprise Linux are now available which address several security vulnerabilities. The Linux kernel handles the basic functions of the operating system. Several security issues have been found that affect the Linux kernel: Al Viro found a security issue in the...
CVE-2003-0248
The mxcsr code in Linux kernel 2.4 allows attackers to modify CPU state registers via a malformed address...
CVE-2003-0248
CVE-2003-0248 affects the Linux kernel 2.4 series; the issue is in the mxcsr code, allowing an attacker to modify CPU state registers via a malformed address. Per available data, the impact is rated as complete confidentiality, integrity, and availability (base CVSS v2 score 10.0). The provided d...
CVE-2003-0248
The mxcsr code in Linux kernel 2.4 allows attackers to modify CPU state registers via a malformed address...