EUVD-2022-55105

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Fix initialization of device object in vmbusdeviceregister Initialize the device's dmamask,parms pointers and the device's dmamask value before invoking deviceregister. Address the following trace with 5.17-rc...

UBUNTU-CVE-2025-0033

Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity...

DEBIAN-CVE-2025-0033

Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity...

CVE-2025-0033

Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity...

CVE-2025-0033

Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity...

AMD EPYC 安全漏洞

AMD EPYC is a high-performance server processor from Ultraviolet Semiconductor AMD. A security vulnerability exists in AMD EPYC that stems from incorrect access control in AMD SEV-SNP that could allow an attacker with administrative privileges to write to RMP during SNP initialization, potentiall...

SEV-SNP RMP Initialization Vulnerability

Summary Researchers from ETHz reported that a malicious hypervisor could corrupt the Reverse Map Table RMP during Secure Nested Paging SNP initialization. AMD reproduced the issue and determined it is due to a race condition that can occur while the AMD Secure Processor ASP is initializing the RM...

RMPocalypse: How a Catch-22 Breaks AMD SEV-SNP

This paper presents RMPocalypse, a novel attack that shows a critical gap in the security of RMP initialization, wherein the x86 cores maliciously control parts of the initial RMP state. The analysis shows that the vulnerability arises due to the complex, but insufficient, interplay of multiple...

Linux Distros Unpatched Vulnerability : CVE-2023-53666

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd938x: fix missing mbhc init error handling MBHC initialisation can fail so...

Linux Distros Unpatched Vulnerability : CVE-2023-53619

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: conntrack: Avoid nfcthelperhash uses after free If nfconntrackinitstart fails for example due to a registernfconntrackbpf failure, the...

PT-2025-51662

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel related to the hdm probe function within the most USB subsystem. An early error path in hdm probe could call put device before the device was fully...

SUSE CVE-2025-39960

In the Linux kernel, the following vulnerability has been resolved: gpiolib: acpi: initialize acpigpioinfo struct Since commit 7c010d463372 "gpiolib: acpi: Make sure we fill struct acpigpioinfo", uninitialized acpigpioinfo struct are passed to acpifindgpio and later in the call stack info-quirks ...

CVE-2025-52960

A Buffer Copy without Checking Size of Input vulnerability in the Session Initialization Protocol SIP ALG of Juniper Networks Junos OS on MX Series and SRX Series allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When memory utilization is high, and specific...

EUVD-2025-33338

In the Linux kernel, the following vulnerability has been resolved: gpiolib: acpi: initialize acpigpioinfo struct Since commit 7c010d463372 "gpiolib: acpi: Make sure we fill struct acpigpioinfo", uninitialized acpigpioinfo struct are passed to acpifindgpio and later in the call stack info-quirks ...

UBUNTU-CVE-2025-39960

In the Linux kernel, the following vulnerability has been resolved: gpiolib: acpi: initialize acpigpioinfo struct Since commit 7c010d463372 "gpiolib: acpi: Make sure we fill struct acpigpioinfo", uninitialized acpigpioinfo struct are passed to acpifindgpio and later in the call stack info-quirks ...

Juniper Networks Junos OS SRX和Juniper Networks Junos OS MX 安全漏洞

Juniper Networks Junos OS is a Juniper Networks USA network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS on SRX Series and MX Series versio...

PT-2025-41374

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel related to the initialization of the acpi gpio info structure within the gpiolib ACPI subsystem. Specifically, after commit 7c010d463372, the acpi gpi...

AlmaLinux 10 : toolbox (ALSA-2025:13674)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:13674 advisory. nvidia-container-toolkit: Privilege Escalation via Hook Initialization in NVIDIA Container Toolkit CVE-2025-23266 Tenable has extracted the preceding description...

SUSE CVE-2023-53619

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: Avoid nfcthelperhash uses after free If nfconntrackinitstart fails for example due to a registernfconntrackbpf failure, the nfconntrackhelperfini clean-up path frees the nfcthelperhash map. When built with...

SUSE CVE-2023-53678

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix system suspend without fbdev being initialized If fbdev is not initialized for some reason - in practice on platforms without display - suspending fbdev should be skipped during system suspend, fix this up. While at...