Lucene search
K

10 matches found

RedHat Linux
RedHat Linux
added 2024/06/11 5:33 p.m.4 views

kernel: Spectre v2 SMT mitigations problem

It was found that the Linux Kernel still left the victim process exposed to attacks in some cases even after enabling the spectre-BTI mitigation with prctl. The kernel failed to protect applications that attempted to protect against Spectre v2 leaving them open to attack from other processes...

5.6CVSS6.8AI score0.01377EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2023/10/10 3:37 p.m.3 views

kernel: Spectre v2 SMT mitigations problem

It was found that the Linux Kernel still left the victim process exposed to attacks in some cases even after enabling the spectre-BTI mitigation with prctl. The kernel failed to protect applications that attempted to protect against Spectre v2 leaving them open to attack from other processes...

5.6CVSS6.6AI score0.01377EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2023/08/01 9:24 a.m.3 views

kernel: Spectre v2 SMT mitigations problem

It was found that the Linux Kernel still left the victim process exposed to attacks in some cases even after enabling the spectre-BTI mitigation with prctl. The kernel failed to protect applications that attempted to protect against Spectre v2 leaving them open to attack from other processes...

5.6CVSS6.6AI score0.01377EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2023/08/01 9:8 a.m.6 views

kernel: Spectre v2 SMT mitigations problem

It was found that the Linux Kernel still left the victim process exposed to attacks in some cases even after enabling the spectre-BTI mitigation with prctl. The kernel failed to protect applications that attempted to protect against Spectre v2 leaving them open to attack from other processes...

5.6CVSS6.6AI score0.01377EPSS
Exploits3References5
0day.today
0day.today
added 2023/04/20 12:0 a.m.293 views

Linux Kernel 6.2 - Userspace Processes To Enable Mitigation Exploit

Exploit Title: Linux Kernel 6.2 - Userspace Processes To Enable Mitigation Exploit Author: nu11secur1ty CVE ID: CVE-2023-1998 Description Summary The Linux kernel allows userspace processes to enable mitigations by calling prctl with PRSETSPECULATIONCTRL which disables the speculation feature as...

5.6CVSS6.7AI score0.01377EPSS
Exploits3
F5 Networks
F5 Networks
added 2023/02/21 6:35 p.m.65 views

K49711130: OpenSSL and Intel processor SMT side-channel vulnerability (PortSmash) CVE-2018-5407

Security Advisory Description Simultaneous Multi-threading SMT in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention.' CVE-2018-5407 also known as PortSmash Impact The vulnerability allows an attacker who can...

4.7CVSS6.6AI score0.03418EPSS
Exploits4Affected Software17
Tenable Nessus
Tenable Nessus
added 2019/02/15 12:0 a.m.50 views

SUSE SLES12 Security Update : nodejs6 (SUSE-SU-2019:0395-1)

This update for nodejs6 to version 6.16.0 fixes the following issues : Security issues fixed : CVE-2018-0734: Fixed a timing vulnerability in the DSA signature generation bsc1113652 CVE-2018-5407: Fixed a hyperthread port content side channel attack aka 'PortSmash' bsc1113534 CVE-2018-12120: Fixe...

8.1CVSS7.2AI score0.41288EPSS
Exploits4References22
OPENSUSE Linux
OPENSUSE Linux
added 2019/01/25 12:0 a.m.160 views

Security update for nodejs4 (important)

openSUSE Security Update: Security update for nodejs4 Announcement ID: openSUSE-SU-2019:0088-1 Rating: important References: 1113534 1113652 1117625 1117626 1117627 1117629 1117630 Cross-References: CVE-2018-0734 CVE-2018-12116 CVE-2018-12120 CVE-2018-12121 CVE-2018-12122 CVE-2018-12123...

8.1CVSS7AI score0.41288EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2019/01/22 12:0 a.m.34 views

SUSE SLES12 Security Update : nodejs4 (SUSE-SU-2019:0117-1)

This update for nodejs4 fixes the following issues : Security issues fixed : CVE-2018-0734: Fixed a timing vulnerability in the DSA signature generation bsc1113652 CVE-2018-5407: Fixed a hyperthread port content side channel attack aka 'PortSmash' bsc1113534 CVE-2018-12120: Fixed that the debugge...

8.1CVSS7.2AI score0.41288EPSS
Exploits4References22
OSV
OSV
added 2018/08/16 6:6 a.m.8 views

SUSE-SU-2018:2347-1 Security update for the Linux Kernel (Live Patch 29 for SLE 12)

This update for the Linux Kernel 3.12.61-52106 fixes several issues. The following security issues were fixed: - CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other...

7.8CVSS7.5AI score0.08101EPSS
Exploits0References7
Rows per page
Query Builder