Lucene search
K

32 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.12 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iommufd: Do not corrupt the pfn list when doing batch carry If batch-end is 0, then setting npfns0 before computing the new value of pfns will fail to adjust the pfn, resulting in various page accounting corruptions. This operati...

5.5CVSS5.3AI score0.00128EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/28 8:22 p.m.20 views

CVE-2026-46113

A flaw was found in the Linux kernel's KVM Kernel-based Virtual Machine x86 shadow paging mechanism. This use-after-free vulnerability arises from incorrect handling of Guest Frame Numbers GFNs when guest page tables are modified. A local attacker with control over a guest virtual machine could...

8.8CVSS5.7AI score0.00126EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/28 9:35 a.m.15 views

EUVD-2026-32872

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp-gfn plus the SPTE index. This assumption breaks for shadow paging if the guest page tables are modifie...

5.7AI score0.00126EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/09 11:26 a.m.6 views

CVE-2021-28707

PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...

8.8CVSS7.3AI score0.00348EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/24 3:30 p.m.4 views

EUVD-2025-205219

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix create memory region overlap check The current check is incorrect; it only checks if the beginning or end of a region is within an existing region. This doesn't account for userspace specifying a region that begins befo...

6AI score0.00155EPSS
Exploits0References4
NVD
NVD
added 2025/12/24 1:16 p.m.4 views

CVE-2025-68743

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix create memory region overlap check The current check is incorrect; it only checks if the beginning or end of a region is within an existing region. This doesn't account for userspace specifying a region that begins befo...

0.00155EPSS
Exploits0References3
NVD
NVD
added 2025/12/24 1:16 p.m.4 views

CVE-2023-54060

In the Linux kernel, the following vulnerability has been resolved: iommufd: Set end correctly when doing batch carry Even though the test suite covers this it somehow became obscured that this wasn't working. The test iommufdioas.mockdomain.accessdomaindestory would blow up rarely. end should be...

0.00189EPSS
Exploits0References2
OSV
OSV
added 2025/12/24 1:16 p.m.3 views

UBUNTU-CVE-2025-68743

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix create memory region overlap check The current check is incorrect; it only checks if the beginning or end of a region is within an existing region. This doesn't account for userspace specifying a region that begins befo...

5.7AI score0.00155EPSS
Exploits0References11
Cvelist
Cvelist
added 2025/12/24 12:23 p.m.24 views

CVE-2023-54060 iommufd: Set end correctly when doing batch carry

In the Linux kernel, the following vulnerability has been resolved: iommufd: Set end correctly when doing batch carry Even though the test suite covers this it somehow became obscured that this wasn't working. The test iommufdioas.mockdomain.accessdomaindestory would blow up rarely. end should be...

0.00189EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/24 12:9 p.m.25 views

CVE-2025-68743 mshv: Fix create memory region overlap check

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix create memory region overlap check The current check is incorrect; it only checks if the beginning or end of a region is within an existing region. This doesn't account for userspace specifying a region that begins befo...

0.00155EPSS
Exploits0References3
CVE
CVE
added 2025/12/24 12:9 p.m.13 views

CVE-2025-68743

The CVE-2025-68743 entry concerns the Linux kernel: the mshv memory-region creation check was incorrect and could mis-handle regions that start before and end after existing regions. The fix replaces the flawed beginning/end overlap checks with a proper range intersection check against gfns and u...

6.1AI score0.00155EPSS
Exploits0References3
CVE
CVE
added 2025/12/04 3:31 p.m.21 views

CVE-2025-40245

CVE-2025-40245 (Linux kernel, nios2) : On nios2 with CONFIG_FLATMEM, memblock.current_limit was not initialized early enough, so memblock_get_current_limit() could miscompute limits for mem_map, letting max_low_pfn exceed max_pfn and expanding DRAM access beyond valid range. This could cause kern...

6AI score0.00173EPSS
Exploits0References6
OSV
OSV
added 2025/12/04 3:31 p.m.5 views

CVE-2025-40245 nios2: ensure that memblock.current_limit is set when setting pfn limits

In the Linux kernel, the following vulnerability has been resolved: nios2: ensure that memblock.currentlimit is set when setting pfn limits On nios2, with CONFIGFLATMEM set, the kernel relies on memblockgetcurrentlimit to determine the limits of memmap, in particular for maxlowpfn. Unfortunately,...

6.3AI score0.00173EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.4 views

Siemens SIMATIC Devices Improper Handling of Structural Elements (CVE-2024-35877)

In the Linux kernel, the following vulnerability has been resolved: x86/mm/pat: fix VMPAT handling in COW mappings PAT handling won't do the right thing in COW mappings: the first PTE or, in fact, all PTEs can be replaced during write faults to point at anon folios. Reliably recovering the correc...

5.5CVSS6.3AI score0.00252EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-53236

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iommufd: Do not corrupt the pfn list when doing batch carry If batch-end is 0 then setting...

5.5CVSS5.3AI score0.00128EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/15 2:22 p.m.23 views

CVE-2023-53236 iommufd: Do not corrupt the pfn list when doing batch carry

In the Linux kernel, the following vulnerability has been resolved: iommufd: Do not corrupt the pfn list when doing batch carry If batch-end is 0 then setting npfns0 before computing the new value of pfns will fail to adjust the pfn and result in various page accounting corruptions. It should be...

0.00128EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/15 2:22 p.m.1 views

CVE-2023-53236 iommufd: Do not corrupt the pfn list when doing batch carry

In the Linux kernel, the following vulnerability has been resolved: iommufd: Do not corrupt the pfn list when doing batch carry If batch-end is 0 then setting npfns0 before computing the new value of pfns will fail to adjust the pfn and result in various page accounting corruptions. It should be...

6.1AI score0.00128EPSS
Exploits0References2
OSV
OSV
added 2025/09/15 2:22 p.m.10 views

CVE-2023-53236 iommufd: Do not corrupt the pfn list when doing batch carry

In the Linux kernel, the following vulnerability has been resolved: iommufd: Do not corrupt the pfn list when doing batch carry If batch-end is 0 then setting npfns0 before computing the new value of pfns will fail to adjust the pfn and result in various page accounting corruptions. It should be...

5.5CVSS6.2AI score0.00128EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from iommufd not properly calculating pfn lists when processing batch operations, which could lead to page metada...

5.5CVSS6.1AI score0.00128EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/18 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a mismatch in the exchange of PFN page types in mprotect, which could lead to a kernel bug...

5.5CVSS6.1AI score0.00175EPSS
Exploits0References3
Rows per page
Query Builder