CVE-2025-71202 iommu/sva: invalidate stale IOTLB entries for kernel address space

In the Linux kernel, the following vulnerability has been resolved: iommu/sva: invalidate stale IOTLB entries for kernel address space Introduce a new IOMMU interface to flush IOTLB paging cache entries for the CPU kernel address space. This interface is invoked from the x86 architecture code tha...

EUVD-2019-4607

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-8781

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The udlfbmmap function in drivers/gpu/drm/udl/udlfb.c at the Linux kernel version 3.4 and up to and including 4.15 has an integer-overflow vulnerability allowin...

CVE-2019-13049

An integer wrap in kernel/sys/syscall.c in ToaruOS 1.10.10 allows users to map arbitrary kernel pages into userland process space via TOARUSYSFUNCMMAP, leading to escalation of privileges...

SUSE CVE-2021-47034

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix pte update for kernel memory on radix When adding a PTE a ptesync is needed to order the update of the PTE with subsequent accesses otherwise a spurious fault may be raised. radixsetpteat does not do this for...

SUSE CVE-2018-1000204

Linux Kernel version 3.18 to 4.16 incorrectly handles an SGIO ioctl on /dev/sg0 with dxferdirection=SGDXFERFROMDEV and an empty 6-byte cmdp. This may lead to copying up to 1000 kernel heap pages to the userspace. This has been fixed upstream in...

SUSE CVE-2019-18675

The Linux kernel through 5.3.13 has a startoffset+size Integer Overflow in cpia2remapbuffer in drivers/media/usb/cpia2/cpia2core.c because cpia2 has its own mmap implementation. This allows local users with /dev/video0 access to obtain read and write permissions on kernel physical pages, which ca...

CVE-2021-25416

Assuming EL1 is compromised, an improper address validation in RKP prior to SMR JUN-2021 Release 1 allows local attackers to create executable kernel page outside code area...

Samsung SMR 输入验证错误漏洞

Samsung SMR is a system patch package from Samsung South Korea. It provides patches for Samsung mobile applications. A security vulnerability previously existed in SMR june -2021 Release 1, which allowed a local attacker to exploit the vulnerability to create executable kernel pages outside of th...

DEBIAN-CVE-2019-18675

The Linux kernel through 5.3.13 has a startoffset+size Integer Overflow in cpia2remapbuffer in drivers/media/usb/cpia2/cpia2core.c because cpia2 has its own mmap implementation. This allows local users with /dev/video0 access to obtain read and write permissions on kernel physical pages, which ca...

CVE-2019-13047

kernel/sys/syscall.c in ToaruOS through 1.10.9 has incorrect access control in syssysfunc case 9 for TOARUSYSFUNCSETHEAP, allowing arbitrary kernel pages to be mapped into user land, leading to root access...

CVE-2019-13047

kernel/sys/syscall.c in ToaruOS through 1.10.9 has incorrect access control in syssysfunc case 9 for TOARUSYSFUNCSETHEAP, allowing arbitrary kernel pages to be mapped into user land, leading to root access...

CVE-2019-13049

An integer wrap in kernel/sys/syscall.c in ToaruOS 1.10.10 allows users to map arbitrary kernel pages into userland process space via TOARUSYSFUNCMMAP, leading to escalation of privileges...

PT-2019-13096 · Toaruos · Toaruos

Name of the Vulnerable Software and Affected Versions: ToaruOS version 1.10.10 Description: The issue is related to an integer wrap in the kernel/sys/syscall.c file, which allows users to map arbitrary kernel pages into userland process space via the TOARU SYS FUNC MMAP function, leading to...

PT-2019-13094 · Toaruos · Toaruos

Name of the Vulnerable Software and Affected Versions: ToaruOS versions prior to 1.10.10 Description: The issue is related to incorrect access control in the sys sysfunc case 9 for TOARU SYS FUNC SETHEAP, allowing arbitrary kernel pages to be mapped into user land. This can lead to root access...

UBUNTU-CVE-2018-8781

The udlfbmmap function in drivers/gpu/drm/udl/udlfb.c at the Linux kernel version 3.4 and up to and including 4.15 has an integer-overflow vulnerability allowing local users with access to the udldrmfb driver to obtain full read and write permissions on kernel physical pages, resulting in a code...