Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20608)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20608 advisory. - x86/sev: Evict cache lines during SNP memory validation Tom Lendacky Orabug: 38453836 CVE-2025-38560 - xfrm: interface: fix use-after-free afte...

CVE-2024-36331

Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity...

x86/sev: Evict cache lines during SNP memory validation

...

Linux Distros Unpatched Vulnerability : CVE-2024-36331

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data...

CVE-2025-38560 x86/sev: Evict cache lines during SNP memory validation

In the Linux kernel, the following vulnerability has been resolved: x86/sev: Evict cache lines during SNP memory validation An SNP cache coherency vulnerability requires a cache line eviction mitigation when validating memory after a page state change to private. The specific mitigation is to tou...