10 matches found
CVE-2024-35992 affecting package kernel for versions less than 6.6.35.1-4
CVE-2024-35992 affecting package kernel for versions less than 6.6.35.1-4. An upgraded version of the package is available that resolves this issue...
Ubuntu: Security Advisory (USN-6921-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6921-1)
The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6921-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...
USN-6921-2: Linux kernel vulnerabilities
Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw is known as WeSee. A local attacker in control of the hypervisor could use this to...
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6921-2)
The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6921-2 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...
USN-6921-1: Linux kernel vulnerabilities
Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw is known as WeSee. A local attacker in control of the hypervisor could use this to...
BELL-CVE-2024-35992
Bulletin has no description...
CVE-2024-35992
A flaw was found in the Linux kernel’s phy-mvebu-a3700-comphy module. An out-of-bounds read in the comphygbephyinit function in the drivers/phy/marvell/phy-mvebu-a3700-comphy.c file can be triggered due to a missing check of an array size, resulting in a denial of service...
CVE-2024-35992
CVE-2024-35992 : Linux kernel vulnerability in marvell a3700-comphy driver exposes an out-of-bounds read of gbe_phy_init_fix[fix_idx].addr; after fix_idx reaches ARRAY_SIZE(gbe_phy_init_fix), an iteration may read beyond, unless gbe_phy_init[addr] is used when all elements of gbe_phy_init_fix are...
CVE-2024-35992
In the Linux kernel, the following vulnerability has been resolved: phy: marvell: a3700-comphy: Fix out of bounds read There is an out of bounds read access of 'gbephyinitfixfixidx.addr' every iteration after 'fixidx' reaches 'ARRAYSIZEgbephyinitfix'. Make sure 'gbephyinitaddr' is used when all...