18 matches found
CVE-2026-46171
In the Linux kernel, the following vulnerability has been resolved: riscv: kvm: fix vector context allocation leak When the second kzalloc hostcontext.vector.datap fails in kvmriscvvcpuallocvectorcontext, the first allocation guestcontext.vector.datap is leaked. Free it before returning...
CVE-2026-46171 riscv: kvm: fix vector context allocation leak
In the Linux kernel, the following vulnerability has been resolved: riscv: kvm: fix vector context allocation leak When the second kzalloc hostcontext.vector.datap fails in kvmriscvvcpuallocvectorcontext, the first allocation guestcontext.vector.datap is leaked. Free it before returning...
PT-2026-44294
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description A memory leak occurs in the Linux kernel within the RISC-V KVM implementation. Specifically, in the kvm riscv vcpu alloc...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Fixed the issue where the sevreceivestart command failed due to the absence of the sevdecommission command. The current SEV context must be decommissioned if binding an ASID fails after a RECEIVESTART operation. Accordi...
EUVD-2023-24698
Malicious code in bioql PyPI...
CVE-2021-47389
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: fix missing sevdecommission in sevreceivestart DECOMMISSION the current SEV context if binding an ASID fails after RECEIVESTART. Per AMD's SEV API, RECEIVESTART generates a new guest context and thus needs to be paired...
CVE-2021-47389
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: fix missing sevdecommission in sevreceivestart DECOMMISSION the current SEV context if binding an ASID fails after RECEIVESTART. Per AMD's SEV API, RECEIVESTART generates a new guest context and thus needs to be paired...
UBUNTU-CVE-2021-47389
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: fix missing sevdecommission in sevreceivestart DECOMMISSION the current SEV context if binding an ASID fails after RECEIVESTART. Per AMD's SEV API, RECEIVESTART generates a new guest context and thus needs to be paired...
The vulnerability of the SNP Guest Context Page Handler component in AMD microprogramming software allows a hacker to execute arbitrary code.
The vulnerability of the SNP Guest Context Page Handler component in AMD microprocessors lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
SUSE CVE-2023-20519
A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's migration agent resulting in a potential loss of guest integrity...
CVE-2023-20519
A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's migration agent resulting in a potential loss of guest integrity...
CVE-2023-20519
A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's migration agent resulting in a potential loss of guest integrity...
CVE-2023-20519
A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's migration agent resulting in a potential loss of guest integrity...
PT-2023-8273 · Amd +1 · Amd Snp Guest Context Page Handler +1
Name of the Vulnerable Software and Affected Versions: AMD SNP Guest Context Page Handler affected versions not specified Description: A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's migration agent,...
SUSE CVE-2021-26327
Insufficient validation of guest context in the SNP Firmware could lead to a potential loss of guest confidentiality...
CVE-2021-26327
Insufficient validation of guest context in the SNP Firmware could lead to a potential loss of guest confidentiality...
CVE-2021-26327
The CVE-2021-26327 entry concerns AMD SNP Firmware. Affected component: AMD SNP Firmware; root cause: insufficient validation of guest context, leading to potential loss of guest confidentiality. Impact: confidentiality can be partially exposed (per CVSS notes), with local access required. Public...
CVE-2021-26327
Insufficient validation of guest context in the SNP Firmware could lead to a potential loss of guest confidentiality...