Lucene search
K

32 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.18 views

Linux Distros Unpatched Vulnerability : CVE-2023-0045

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information...

7.5CVSS6.8AI score0.02399EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2025/02/24 12:0 a.m.11 views

Siemens SCALANCE W700 Externally Controlled Reference to a Resource in Another Sphere (CVE-2023-0045)

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags TIFs for the task and updates the SPECCTRL MSR on the function speculationctrlupdate, but the IBPB is only issued on the next schedul...

7.5CVSS6.7AI score0.02399EPSS
Exploits3References4
OSV
OSV
added 2023/07/11 2:55 p.m.15 views

SUSE-SU-2023:2809-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-24588: Fixed a bug that could allow an adversary to abuse devices that support receiving non-SSP A-MSDU frames to inject arbitrary network packets...

8.8CVSS9.2AI score0.12966EPSS
Exploits40References489
OpenVAS
OpenVAS
added 2023/07/04 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2272)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.02399EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2023/06/01 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2020)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.16642EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2023/05/18 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1978)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.02399EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2023/05/17 12:0 a.m.46 views

Debian dla-3404 : linux-config-5.10 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3404 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3404-1 [email protected]...

8.8CVSS7.6AI score0.06346EPSS
Exploits8References76
OpenVAS
OpenVAS
added 2023/05/17 12:0 a.m.33 views

Debian: Security Advisory (DLA-3404-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.8AI score0.06346EPSS
Exploits8References4
Debian
Debian
added 2023/05/02 10:45 p.m.37 views

[SECURITY] [DLA 3404-1] linux-5.10 security update

Debian LTS Advisory DLA-3404-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings May 3, 2023 https://wiki.debian.org/LTS Package : linux-5.10 Version : 5.10.178-3deb10u1 CVE ID : CVE-2022-2196 CVE-2022-3424 CVE-2022-3707 CVE-2022-4129 CVE-2022-4379 CVE-2023-0045...

8.8CVSS7.3AI score0.06346EPSS
Exploits8
Cvelist
Cvelist
added 2023/04/25 10:44 p.m.22 views

CVE-2023-0045 Incorrect indirect branch prediction barrier in the Linux Kernel

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags TIFs for the task and updates the SPECCTRL MSR on the function speculationctrlupdate, but the IBPB is only issued on the next...

4.7CVSS7.8AI score0.02399EPSS
Exploits3References5
OpenVAS
OpenVAS
added 2023/04/03 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-5991-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.9CVSS7.4AI score0.03702EPSS
Exploits5References4
Ubuntu
Ubuntu
added 2023/03/29 4:44 p.m.89 views

USN-5984-1: Linux kernel vulnerabilities

It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service memory exhaustion. CVE-2021-3669 It was discovered that a use-after-free vulnerability existed in the SGI GRU...

7.9CVSS7.5AI score0.03702EPSS
Exploits5
OpenVAS
OpenVAS
added 2023/03/29 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-5979-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.03702EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2023/03/29 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-5982-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.71737EPSS
Exploits7References4
Ubuntu
Ubuntu
added 2023/03/28 7:49 p.m.222 views

USN-5982-1: Linux kernel vulnerabilities

It was discovered that the KVM VMX implementation in the Linux kernel did not properly handle indirect branch prediction isolation between L1 and L2 VMs. An attacker in a guest VM could use this to expose sensitive information from the host OS or other guest VMs. CVE-2022-2196 It was discovered...

8.8CVSS7.7AI score0.71737EPSS
Exploits7
Ubuntu
Ubuntu
added 2023/03/28 7:44 p.m.108 views

USN-5981-1: Linux kernel vulnerabilities

It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service memory exhaustion. CVE-2021-3669 It was discovered that a use-after-free vulnerability existed in the SGI GRU...

7.9CVSS7.5AI score0.03702EPSS
Exploits5
Ubuntu
Ubuntu
added 2023/03/28 4:23 p.m.79 views

USN-5979-1: Linux kernel (HWE) vulnerabilities

It was discovered that the KVM VMX implementation in the Linux kernel did not properly handle indirect branch prediction isolation between L1 and L2 VMs. An attacker in a guest VM could use this to expose sensitive information from the host OS or other guest VMs. CVE-2022-2196 It was discovered...

8.8CVSS7.5AI score0.03702EPSS
Exploits5
OSV
OSV
added 2023/03/28 7:19 a.m.6 views

SUSE-SU-2023:1608-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 Azure kernel was updated to receive various security and bugfixes. - CVE-2022-3523: Fixed use after free related to device private page handling bsc1204363. - CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver bsc1203332. -...

7.8CVSS8.2AI score0.02399EPSS
Exploits4References161
Tenable Nessus
Tenable Nessus
added 2023/03/28 12:0 a.m.39 views

Ubuntu 16.04 ESM : Linux kernel vulnerabilities (USN-5981-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5981-1 advisory. It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use...

7.9CVSS7.7AI score0.03702EPSS
Exploits5References12
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2023:0618-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.9CVSS8.3AI score0.03702EPSS
Exploits4References44
Rows per page
Query Builder