CVE-2024-36315

CVE-2024-36315 concerns AMD processors (AMD Athlon™, AMD Ryzen™, and AMD Ryzen Embedded) where improper LFENCE serialization may allow bypass of speculation barriers, potentially exposing confidential data. The CVE is listed in AMD’s May 2026 bulletin (AMD-SB-4017) along with related historical C...

CVE-2024-36315

Improper enforcement of the LFENCE serialization property may allow an attacker to bypass speculation barriers and potentially disclose sensitive information, potentially resulting in loss of confidentiality...

CVE-2024-36315

Improper enforcement of the LFENCE serialization property may allow an attacker to bypass speculation barriers and potentially disclose sensitive information, potentially resulting in loss of confidentiality...

CVE-2024-36315

Improper enforcement of the LFENCE serialization property may allow an attacker to bypass speculation barriers and potentially disclose sensitive information, potentially resulting in loss of confidentiality...

AMD多款产品 安全漏洞

AMD EPYC is a high-performance server processor developed by American semiconductor company AMD. Several AMD products have security vulnerabilities. These vulnerabilities stem from improper execution of the LFENCE serialization attribute, which may allow attackers to bypass the speculation barrie...

MiracleLinux 7 : kernel-3.10.0-1160.83.1.el7 (AXSA:2023-4929:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4929:03 advisory. kernel: memory corruption in AX88179178A based USB ethernet device. CVE-2022-2964 hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715...

EUVD-2021-13207

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414647)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414647 advisory. LFENCE/JMP mitigation V2-2 may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs. Tenable has extracted the preceding description block directly from the Unit...

Linux Distros Unpatched Vulnerability : CVE-2023-53024

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation To mitigate...

CVE-2023-53024

The CVE-2023-53024 entry concerns the Linux kernel BPF subsystem. Root cause: speculative store bypass (SSB) can cause a stack slot initially containing a pointer to be overwritten by a scalar without a subsequent lfence, enabling a potential speculative-pointer‑as‑scalar leak. The mitigation add...

K000137188: AMD CPU vulnerability CVE-2021-26401

Security Advisory Description LFENCE/JMP mitigation V2-2 may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs. CVE-2021-26401 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Development has evaluated the currently supporte...

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.5.2.6)

The version of AOS installed on the remote host is prior to 6.5.2.6. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.5.2.6 advisory. - BIND 9.11.0 - 9.11.36 9.12.0 - 9.16.26 9.17.0 - 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 - 9.11.36-S1 9.16.8-S1 -...

Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2023-070)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-070 advisory. 2024-04-10: CVE-2023-0461 was added to this advisory. 2024-02-01: CVE-2024-0562 was added to this advisory. 2024-02-01: CVE-2022-48619 was added to this advisory. 2023-10-10: CVE-2023-3357 was...

SUSE CVE-2021-26401

LFENCE/JMP mitigation V2-2 may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs...

Advisory ROSA-SA-2023-2097

Software: kernel 3.10.0-1160.83.1.el7 OS: rosa-server79 packageevrstring: 3.10.0-1160.83.1.el7 CVE-ID: CVE-2022-2964 BDU-ID: 2022-05848 CVE-Crit: HIGH CVE-DESC: A vulnerability in the Linux operating system kernel driver for ASIX AX88179178A-based USB 2.0/3.0 Gigabit Ethernet devices is related t...

bpftool, kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2023:0399 An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Scientific Linux Security Update : kernel on SL7.x x86_64 (2023:0399)

The remote Scientific Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the SLSA-2023:0399-1 advisory. - kernel: memory corruption in AX88179178A based USB ethernet device. CVE-2022-2964 - hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715...

Oracle Linux 7 : kernel (ELSA-2023-0399)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-0399 advisory. - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 - x86/speculation: Use generic retpoline by default on AMD Rafael Aquini 2062165 CVE-2021-26401...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715

A flaw was found in hw. The speculative execution window of AMD LFENCE/JMP mitigation MITIGATION V2-2 may be large enough to be exploited on AMD CPUs...