Lucene search
K

669 matches found

Packet Storm News
Packet Storm News
added 2025/09/23 12:0 a.m.6 views

Exploiting Page Faults for Covert Communication

We present a novel mechanism to construct a covert channel based on page faults. A page fault is an event that occurs when a process or a thread tries to access a page of memory that is not currently mapped to its address space. The kernel typically responds to this event by performing a context...

6.9AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/20 1:2 a.m.3 views

parisc: Try to fix random segmentation faults in package builds

...

6.3CVSS7AI score0.00264EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.13 views

PT-2025-38357

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the DRM/i915/dpt subsystem. The i915 gem object is framebuffer function does not recognize the buffer object BO containing the framebuffer’s DPT a...

8CVSS7.4AI score0.21314EPSS
Exploits4References834
SUSE CVE
SUSE CVE
added 2025/09/11 11:24 p.m.5 views

SUSE CVE-2025-39739

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-qcom: Add SM6115 MDSS compatible Add the SM6115 MDSS compatible to clients compatible list, as it also needs that workaround. Without this workaround, for example, QRB4210 RB2 which is based on SM4250/SM6115...

6.4AI score0.00145EPSS
Exploits0References21
NVD
NVD
added 2025/09/11 5:15 p.m.9 views

CVE-2025-39739

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-qcom: Add SM6115 MDSS compatible Add the SM6115 MDSS compatible to clients compatible list, as it also needs that workaround. Without this workaround, for example, QRB4210 RB2 which is based on SM4250/SM6115...

5.5CVSS0.00145EPSS
Exploits0References5
OSV
OSV
added 2025/09/11 5:15 p.m.6 views

AZL-67181 CVE-2025-39739 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-qcom: Add SM6115 MDSS compatible Add the SM6115 MDSS compatible to clients compatible list, as it also needs that workaround. Without this workaround, for example, QRB4210 RB2 which is based on SM4250/SM6115...

5.5CVSS5.6AI score0.00145EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 5:15 p.m.3 views

DEBIAN-CVE-2025-39739

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-qcom: Add SM6115 MDSS compatible Add the SM6115 MDSS compatible to clients compatible list, as it also needs that workaround. Without this workaround, for example, QRB4210 RB2 which is based on SM4250/SM6115...

5.5CVSS5.4AI score0.00145EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 4:52 p.m.6 views

CVE-2025-39739 iommu/arm-smmu-qcom: Add SM6115 MDSS compatible

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-qcom: Add SM6115 MDSS compatible Add the SM6115 MDSS compatible to clients compatible list, as it also needs that workaround. Without this workaround, for example, QRB4210 RB2 which is based on SM4250/SM6115...

5.5CVSS6.1AI score0.00145EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/09/11 12:0 a.m.5 views

PT-2025-37198

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.15.0-03037-gaacc73ceeb8b Description: A flaw exists in the Linux kernel's IOMMU subsystem, specifically within the ARM SMU Qualcomm component. The vulnerability stems from a missing workaround for the SM6115...

5.5CVSS5.9AI score0.00145EPSS
Exploits0
Cvelist
Cvelist
added 2025/09/02 11:39 p.m.11 views

CVE-2025-54588 Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults

Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. Versions 1.34.0 through 1.34.4 and 1.35.0 contain a use-after-free UAF vulnerability in the DNS cache, causing abnormal process termination. The vulnerability is in Envoy's Dynamic...

7.5CVSS0.0044EPSS
Exploits0References3
NVD
NVD
added 2025/08/19 5:15 p.m.16 views

CVE-2025-38594

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix UAF on sva unbind with pending IOPFs Commit 17fce9d2336d "iommu/vt-d: Put iopf enablement in domain attach path" disables IOPF on device by removing the device from its IOMMU's IOPF queue when the last IOPF-capabl...

7.8CVSS0.00143EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/19 5:3 p.m.21 views

CVE-2025-38594 iommu/vt-d: Fix UAF on sva unbind with pending IOPFs

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix UAF on sva unbind with pending IOPFs Commit 17fce9d2336d "iommu/vt-d: Put iopf enablement in domain attach path" disables IOPF on device by removing the device from its IOMMU's IOPF queue when the last IOPF-capabl...

0.00143EPSS
Exploits0References2
CVE
CVE
added 2025/08/19 5:3 p.m.26 views

CVE-2025-38594

CVE-2025-38594 pertains to the Linux kernel (iommu/vt-d) and fixes a use-after-free (UAF) in sva unbind with pending IOPFs. The root cause was a wrong removal of a device from the IOMMU IOPF queue when the last IOPF-capable domain detaches, occurring before intel_pasid_tear_down_entry() completed...

7.8CVSS7.1AI score0.00143EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/08/19 5:3 p.m.7 views

CVE-2025-38594

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix UAF on sva unbind with pending IOPFs Commit 17fce9d2336d "iommu/vt-d: Put iopf enablement in domain attach path" disables IOPF on device by removing the device from its IOMMU's IOPF queue when the last IOPF-capabl...

7.8CVSS6.3AI score0.00143EPSS
Exploits0
OSV
OSV
added 2025/08/19 5:3 p.m.6 views

CVE-2025-38586 bpf, arm64: Fix fp initialization for exception boundary

In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix fp initialization for exception boundary In the ARM64 BPF JIT when prog-aux-exceptionboundary is set for a BPF program, findusedcalleeregs is not called because for a program acting as exception boundary, all call...

5.5CVSS6AI score0.00145EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.7 views

PT-2025-33792 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a use-after-free UAF flaw within the iommu/vt-d subsystem, specifically during the unbinding of SVA Second Virtual Address with pending IOPFs I/O Page Faults....

6.8AI score0.00143EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2014-9090

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dodoublefault function in arch/x86/kernel/traps.c in the Linux kernel through 3.17.4 does not properly handle faults associated with the Stack Segment SS...

4.9CVSS6.3AI score0.00376EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/08/15 11:23 p.m.8 views

SUSE CVE-2025-24975

Firebird is a relational database. Prior to snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609, Firebird is vulnerable if ExtConnPoolSize is not set equal to 0. If connections stored in ExtConnPool are not verified for presence and suitability of the CryptCallback interface is used when...

8.8CVSS6.7AI score0.00474EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2025-22022

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: xhci: Apply the link chain quirk on NEC isoc endpoints Two clearly different specimens of NEC uPD720200 one with start/stop bug, one without were seen to...

7.8CVSS6.9AI score0.00175EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-37936

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: KVM: Mask PEBSENABLE loaded for guest with vCPU's value. When generating the...

5.5CVSS6.2AI score0.0016EPSS
Exploits0References3
Rows per page
Query Builder