USN-7510-4 linux-intel-iot-realtime, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

USN-7521-1 linux, linux-azure, linux-azure-6.11, linux-gcp, linux-gcp-6.11, linux-hwe-6.11, linux-oem-6.11, linux-raspi, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Serial ATA and Parallel...

USN-7518-1 linux-azure-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - Block layer subsystem; - Drivers core; - Network block device driver;...

USN-7516-1 linux, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-oracle vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - Block layer subsystem; - Drivers core; - Network block device driver;...

USN-7512-1: Linux kernel (GCP) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

USN-7512-1 linux-gcp-5.15 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

USN-7511-2 linux-gcp-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

USN-7510-1 linux, linux-gkeop, linux-ibm, linux-ibm-5.15, linux-intel-iotg, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

The vulnerability of the trusted execution environment of Virtualization-Based Security (VBS) Enclaves in Windows operating systems allows attackers to circumvent existing security restrictions.

The vulnerability of the trusted execution environment for Virtualization-Based Security VBS in Windows operating systems is related to insufficient verification of data authenticity. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...

SUSE CVE-2025-21871

In the Linux kernel, the following vulnerability has been resolved: tee: optee: Fix supplicant wait loop OP-TEE supplicant is a user-space daemon and it's possible for it be hung or crashed or killed in the middle of processing an OP-TEE RPC call. It becomes more complicated when there is incorre...

The vulnerability of the Trusted Execution Environment (TEE) for the deployment of Intel Trust Domain Extensions (Intel TDX) allows a perpetrator to exploit their privileges by exploiting incomplete filtering of special elements.

The vulnerability of the Trusted Execution Environment TEE for the deployment of Intel Trust Domain Extensions virtual machines is related to incomplete filtering of special elements. Exploiting this vulnerability can allow an attacker to enhance their privileges...

Post-Quantum Secure Feldman's Verifiable Secret Sharing has Inadequate Fault Injection Countermeasures in `secure_redundant_execution`

Description: The secureredundantexecution function in feldmanvss.py attempts to mitigate fault injection attacks by executing a function multiple times and comparing results. However, several critical weaknesses exist: 1. Python's execution environment cannot guarantee true isolation between...

CVE-2022-25334

The Texas Instruments OMAP L138 secure variants trusted execution environment TEE lacks a bounds check on the signature size field in the SKLOAD module loading routine, present in mask ROM. A module with a sufficiently large signature field causes a stack overflow, affecting secure kernel data...

CVE-2022-25333

The Texas Instruments OMAP L138 secure variants trusted execution environment TEE performs an RSA check implemented in mask ROM when loading a module through the SKLOAD routine. However, only the module header authenticity is validated. An adversary can re-use any correctly signed header and appe...

CVE-2022-33273

Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation...

The vulnerability of the trusted execution environment of the Virtualization-Based Security (VBS) Enclave in Microsoft Windows operating systems allows attackers to enhance their privileges.

The vulnerability of the trusted execution environment for the Virtualization-Based Security VBS Enclave in Microsoft Windows operating systems is related to insufficient input data validation. Exploiting this vulnerability can allow attackers to enhance their privileges...

PT-2025-5628 · Intel · Intel Sgx

Name of the Vulnerable Software and Affected Versions: Intel SGX affected versions not specified Description: The issue is a side-channel timing attack against Intel SGX enclaves, which can lead to the complete compromise of Trusted Execution Environment TEE attestation. A proof of concept PoC ha...

The vulnerability of the Trusted Execution Environment (TEE) for the deployment of Intel Trust Domain Extensions (Intel TDX) allows a perpetrator to exploit their privileges by improperly checking input data.

The vulnerability of the Trusted Execution Environment TEE for deploying Intel Trust Domain Extensions virtual machines is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to enhance their privileges...

The vulnerability of the Trusted Execution Environment (TEE) for the deployment of Intel Trust Domain Extensions (Intel TDX) allows a perpetrator to exploit their privileges by improperly checking input data.

The vulnerability of the Trusted Execution Environment TEE for deploying Intel Trust Domain Extensions Intel TDX lies in improper validation of input data. Exploiting this vulnerability can allow an attacker to enhance their privileges...

PT-2024-10570 · Qualcomm · Qsee

Name of the Vulnerable Software and Affected Versions: QSEE affected versions not specified Description: The issue is related to the QSEE experiencing a fatal error during execution. This error occurs due to speculative instruction fetches from device memory, which is not valid executable memory...