AZL-10003 CVE-2022-1852 affecting package kernel for versions less than 5.15.55.1-1

A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU...

Ubuntu: Security Advisory (USN-5486-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Intel Microcode vulnerabilities (USN-5486-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5486-1 advisory. It was discovered that some Intel processors did not implement sufficient control flow management. A local attacker could use thi...

ALPINE-CVE-2022-21166

Incomplete cleanup in specific special register write operations for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2022-21166

Incomplete cleanup in specific special register write operations for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2022-21127

Incomplete cleanup in specific special register read operations for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2022-24436

A potential vulnerability in some Intel® processors using frequency scaling may allow an authenticated attacker to execute a timing attack to potentially enable information disclosure. Mitigation Currently, there is no mitigation for this flaw. Intel has provided some guidance to developers of...

June 2022 Patch Tuesday | Microsoft Releases 55 Vulnerabilities with 3 Critical; Adobe Releases 6 Advisories, 46 Vulnerabilities with 40 Critical.

Microsoft Patch Tuesday Summary Microsoft has fixed 55 vulnerabilities aka flaws in the June 2022 update, including three 3 vulnerabilities classified as Critical as they allow Remote Code Execution RCE. This months Patch Tuesday cumulative Windows update includes the fix for one 1 zero-day...

SUSE-SU-2022:1732-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220510 release. bsc1199423 Updated to Intel CPU Microcode 20220419 release. bsc1198717 - CVE-2022-21151: Processor optimization removal or modification of security-critical code for some IntelR Processors may...

CVE-2022-21151

A flaw was found in hw. Processor optimization removal or modification of security-critical code for some IntelR processors may potentially allow an authenticated user to enable information disclosure via local access. Mitigation Mitigation for this issue is either not available or the currently...

CVE-2021-0159

Improper input validation in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

CVE-2021-0188

Return of pointer value outside of expected range in the BIOS firmware for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

CVE-2021-0159

CVE-2021-0159 concerns Intel BIOS firmware: improper input validation in the BIOS authenticated code module for certain Intel CPUs may allow a local privileged user to escalate privileges. The vulnerability is documented by Intel’s advisory INTEL-SA-00601 (and related Intel security notes) and su...

CVE-2021-33103

Unintended intermediary in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

CVE-2021-0153

CVE-2021-0153 describes an out-of-bounds write in the BIOS firmware for some Intel processors that could allow a locally authenticated attacker to escalate privileges. The Intel advisory (INTEL-SA-00601) confirms a BIOS/firmware issue with escalation potential and recommends vendor-provided BIOS ...

CVE-2022-0004

Hardware debug modes and processor INIT setting that allow override of locks for some IntelR Processors in IntelR Boot Guard and IntelR TXT may allow an unauthenticated user to potentially enable escalation of privilege via physical access...

Intel Boot Guard and Intel TXT Advisory - Lenovo Support US

No description provided...

Intel Processor Speculative Cross Store Bypass Advisory - Lenovo Support US

No description provided...

hw: cpu: intel: Intra-Mode BTI

A flaw was found in hw. The Intra-mode BTI refers to a variant of Branch Target Injection aka SpectreV2 BTI where an indirect branch speculates to an aliased predictor entry for a different indirect branch in the same predictor mode, and a disclosure gadget at the predicted target transiently...

NewStart CGSL MAIN 4.06 : kernel Multiple Vulnerabilities (NS-SA-2022-0075)

The remote NewStart CGSL host, running version MAIN 4.06, has kernel packages installed that are affected by multiple vulnerabilities: - The offset2lib patch as used by the Linux Kernel contains a vulnerability, if RLIMITSTACK is set to RLIMINFINITY and 1 Gigabyte of memory is allocated the maxim...