Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: KVM: x86: Reject Hyper-V’s SENDIPI hypercalls if the local APIC is not part of the kernel. Advertise support for Hyper-V’s SENDIPI and SENDIPIEX hypercalls only if the local API is emulated/virtualized by KVM. Explicitly rejec...

Azure Linux 3.0 Security Update: kernel (CVE-2025-21779)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21779 advisory. - In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reject Hyper-V's SENDIPI...

EUVD-2025-21959

Malicious code in bioql PyPI...

EUVD-2025-5138

Malicious code in bioql PyPI...

CVE-2025-38351

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/hyper-v: Skip non-canonical addresses during PV TLB flush In KVM guests with Hyper-V hypercalls enabled, the hypercalls HVCALLFLUSHVIRTUALADDRESSLIST and HVCALLFLUSHVIRTUALADDRESSLISTEX allow a guest to request...

KVM: x86: Reject Hyper-V's SEND_IPI hypercalls if local APIC isn't in-kernel

...

CVE-2025-21779

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reject Hyper-V's SENDIPI hypercalls if local APIC isn't in-kernel Advertise support for Hyper-V's SENDIPI and SENDIPIEX hypercalls if and only if the local API is emulated/virtualized by KVM, and explicitly reject said...

CVE-2025-21779

The CVE-2025-21779 entry concerns Linux kernel KVM on x86 where Hyper-V SEND_IPI/SEND_IPI_EX hypercalls are advertised only when the local APIC is emulated/virtualized by KVM. The fix rejects these hypercalls if the local APIC is emulated in userspace, preventing a NULL-pointer dereference when H...