349 matches found
EUVD-2016-7645
Malware in sbrugna...
EUVD-2017-0790
Malware in sbrugna...
EUVD-2016-7680
Malware in sbrugna...
EUVD-2017-0856
Malware in sbrugna...
EUVD-2016-9277
Malware in sbrugna...
EUVD-2020-29717
Malware in sbrugna...
EUVD-2023-36423
Malicious code in bioql PyPI...
AZL-71924 CVE-2023-53438 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: x86/MCE: Always save CS register on AMD Zen IF Poison errors The Instruction Fetch IF units on current AMD Zen-based systems do not guarantee a synchronous MC is delivered for poison consumption errors. Therefore,...
CVE-2023-53438 x86/MCE: Always save CS register on AMD Zen IF Poison errors
In the Linux kernel, the following vulnerability has been resolved: x86/MCE: Always save CS register on AMD Zen IF Poison errors The Instruction Fetch IF units on current AMD Zen-based systems do not guarantee a synchronous MC is delivered for poison consumption errors. Therefore,...
CVE-2023-53438
CVE-2023-53438 : In the Linux kernel, the AMD Zen IF poison error path could misclassify context due to non-synchronous delivery of poison by the IF unit. The issue is mitigated by adding a quirk to always save the Code Segment (CS) register when poison is consumed from the IF unit banks, ensurin...
CVE-2023-53438 x86/MCE: Always save CS register on AMD Zen IF Poison errors
In the Linux kernel, the following vulnerability has been resolved: x86/MCE: Always save CS register on AMD Zen IF Poison errors The Instruction Fetch IF units on current AMD Zen-based systems do not guarantee a synchronous MC is delivered for poison consumption errors. Therefore,...
Linux Distros Unpatched Vulnerability : CVE-2016-3843
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Android before 2016-08-05 does not properly restrict code execution in a kernel context, which allows attackers to gain privileges via a crafted application, as...
CVE-2025-51060
An issue was discovered in CPUID cpuz.sys 1.0.5.4. An attacker can use DeviceIoControl with the unvalidated parameters 0x9C402440 and 0x9C402444 as IoControlCodes to perform RDMSR and WRMSR, respectively. Through this process, the attacker can modify MSRLSTAR and hook KiSystemCall64. Afterward,...
CVE-2025-51060
CVE-2025-51060 affects CPUID cpuz.sys 1.0.5.4. The advisory describes unvalidated DeviceIoControl IOCTLs (0x9C402440 for RDMSR and 0x9C402444 for WRMSR) that let an attacker read/write MSR_LSTAR and overwrite KiSystemCall64. This enables a kernel-mode ROP chain that disables SMEP by modifying CR4...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a possible deadlock of nfsreleasefolio in the context of kcompactd...
CVE-2020-17392
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.3-47255. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...
CVE-2024-50099
CVE-2024-50099 concerns the Linux kernel arm64 uprobes for LDR (literal) and LDRSW (literal). The two functions, simulate_ldr_literal() and simulate_ldrsw_literal(), were originally written for kprobes and use plain C memory accesses. When uprobes were added, these were reused unmodified, but the...
Linux Kernel ICMPv6 Router Advertisement Race Condition Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of Route Information options. The issue results from the lack of...
Linux Kernel USB/IP VHCI Driver Race Condition Privilege Escalation Vulnerability
This vulnerability allows physically present attackers to escalate privileges on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of the reset event. The issue results from the lack of proper locki...
CVE-2023-32155
Tesla Model 3 bcmdhd Out-Of-Bounds Write Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected Tesla Model 3 vehicles. An attacker must first obtain the ability to execute code on the wifi subsystem in order to exploit this...