28367 matches found
kernel: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry
A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM for ARM64, specifically within the vgic-its component. This vulnerability occurs when multiple concurrent operations incorrectly drop the translation cache's reference to an entry more than once during cache invalidation. Thi...
CVE-2026-50429
CVE-2026-50429 describes an out-of-bounds read in the Windows Kernel that may allow a remote attacker to disclose information over a network. The entry is tied to Microsoft’s Windows kernel information-disclosure vulnerability with a base CVSSv3.1 score of 8.2 (Network, Low attack complexity, No ...
CVE-2026-50475
CVE-2026-50475 is a Windows Kernel information‑disclosure vulnerability caused by a buffer over‑read in the kernel. An authorized local attacker can disclose information from memory. Documented impact is local information disclosure; no remote code execution is indicated in the provided sources. ...
CVE-2026-50399
CVE-2026-50399 is a Windows Kernel elevation-of-privilege vulnerability caused by an out-of-bounds read in the Windows Kernel. The issue enables an authorized attacker to elevate privileges locally. According to the connected sources, the affected component is Windows Kernel, with a CVSS v3.1 bas...
CVE-2026-50436 Windows Kernel Elevation of Privilege Vulnerability
...
CVE-2026-50463
CVE-2026-50463 is a Windows Kernel information-disclosure flaw (out-of-bounds read) that can be exploited remotely over a network to disclose data. The CVE is documented across NVD/EUVD and related feeds, and Microsoft has released updates (KB5099539/KB5099540 and MSRC page) addressing this vulne...
CVE-2026-50316 Windows Kernel Information Disclosure Vulnerability
...
CVE-2026-10669 Xtensa MPU `arch_buffer_validate()` integer-overflow lets a user thread bypass syscall pointer validation
On Xtensa SoCs built with CONFIGXTENSAMPU and CONFIGUSERSPACE, archbuffervalidate in arch/xtensa/core/mpu.c — the architecture hook that verifies a user-mode-supplied buffer is accessible to the calling user thread with the requested permission — defaulted its return value to 0 access permitted a...
Windows Kernel Information Disclosure Vulnerability
Buffer over-read in Windows Kernel allows an authorized attacker to disclose information locally...
kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role
A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM x86 shadow paging mechanism. This vulnerability occurs when a host page directory entry PDE mapping is changed from within the guest, leading to an unexpected role mismatch in shadow paging. This mismatch can cause a...
RockyLinux 8 : kernel (RLSA-2026:36366)
The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:36366 advisory. kernel: fs/smb/client: fix out-of-bounds read in cifssanitizeprepath CVE-2026-43112 Tenable has extracted the preceding description block directly from the...
CVE-2026-45196
Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigger a GPU register access which can lead to privilege escalation...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of current in removewaiter CVE-2026-43499 Affected Packages: kernel Note: This advisory is applicable to Amazon Linux 2 - Kernel-5.4 Extra. Visit this page to learn more about...
Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: espintcp: A race condition in espintcpclose has been fixed. This issue was discovered during a code audit. After espintcpclose is called, espintcptxwork can still be scheduled using functions like the Delayed ACK handler or...
Critical: Red Hat Security Advisory: OpenShift Container Platform 4.17.55 bug fix and security update
Red Hat OpenShift Container Platform release 4.17.55 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.17. Red Hat Product Security has rated this update as having a...
kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL
A flaw was found in the Linux kernel's Stream Control Transmission Protocol SCTP implementation. A race condition exists in the SCTPSENDALL path where a cached list entry is not properly revalidated after the socket lock is temporarily released. This allows a local attacker or a remote attacker v...
CVE-2026-31516
creationtimestamp| type| source ---|---|--- 2026-07-09 01:16:26+00:00| seen| https://www.hkcert.org/security-bulletin/suse-linux-kernel-multiple-vulnerabilities20260702...
Nutanix AHV : (NXSA-AHV-10.3.1.8)
The version of AHV installed on the remote host is prior to 10.3.1.8 / AHV-10.3.1.8. It is, therefore, affected by a vulnerability as referenced in the NXSA-AHV-10.3.1.8 advisory. - In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating...
CVE-2026-52995 affecting package kernel for versions less than 6.6.143.1-1
CVE-2026-52995 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2026-53022 affecting package kernel for versions less than 6.6.143.1-1
CVE-2026-53022 affecting package kernel for versions less than 6.6.143.1-1. An upgraded version of the package is available that resolves this issue...