Lucene search
K

82 matches found

Tenable Nessus
Tenable Nessus
added 2019/07/15 12:0 a.m.68 views

Oracle Linux 7 : qemu (ELSA-2019-4713)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4713 advisory. - Document CVEs as fixed: CVE-2017-9524, CVE-2017-6058, CVE-2017-5931 Mark Kanda Orabug: 29886908 CVE-2017-5931 CVE-2017-6058 CVE-2017-9524 - pvrdma:...

8.8CVSS6.9AI score0.05546EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2019/06/25 12:0 a.m.291 views

Linux Kernel Detection of MDS vulnerabilities (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

According to the remote Linux kernel, this system is vulnerable to the following information disclosure vulnerabilities: - MSBDS leaks Store Buffer Entries which can be speculatively forwarded to a dependent load store-to-load forwarding as an optimization. The forward can also happen to a faulti...

5.9CVSS6.7AI score0.01553EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2019/06/19 12:0 a.m.43 views

SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2019:1547-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for libvirt fixes the following issues : Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12127: Microarchitectural Fill Buffer Data Sampling MFBDS...

5.9CVSS6.8AI score0.01553EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2019/06/19 12:0 a.m.54 views

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:1550-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout) (SACK Panic) (SACK Slowness) (Spectre)

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2019-12819: The function mdiobusregister called putdevice, which triggered a fixedmdiobusinit use-after-free. This would cause a denial of service. bsc1138291...

9.3CVSS7.3AI score0.98745EPSS
Exploits19References404
Tenable Nessus
Tenable Nessus
added 2019/06/10 12:0 a.m.34 views

SUSE SLES12 Security Update : libvirt (SUSE-SU-2019:1452-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for libvirt fixes the following issues : Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12127: Microarchitectural Fill Buffer Data Sampling MFBDS...

5.9CVSS6.8AI score0.01553EPSS
Exploits0References12
OSV
OSV
added 2019/05/30 4:29 p.m.16 views

CVE-2019-11091

Microarchitectural Data Sampling Uncacheable Memory MDSUM: Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here:...

5.6CVSS7.7AI score
Exploits0References22
Prion
Prion
added 2019/05/30 4:29 p.m.13 views

Information disclosure

Microarchitectural Data Sampling Uncacheable Memory MDSUM: Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here:...

4.7CVSS5.7AI score0.00607EPSS
Exploits0References22Affected Software1
CVE
CVE
added 2019/05/30 3:28 p.m.543 views

CVE-2019-11091

CVE-2019-11091 describes Microarchitectural Data Sampling Uncacheable Memory (MDSUM): uncacheable memory on some Intel microprocessors with speculative execution may leak information via a side channel. Public advisories (ALAS2-2019-1274, ALAS-2019-1260, DEBIAN DSA-4602-1/DSA-4564-1) confirm the ...

5.6CVSS5.9AI score0.00607EPSS
Exploits0References22Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/05/30 12:0 a.m.34 views

Citrix XenServer Microarchitectural Data Sampling Speculative Side-Channel Vulnerabilities (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout) (CTX2251995)

The version of Citrix XenServer running on the remote host is missing a security hotfix. It is, therefore, affected by microarchitectural data sampling speculative side-channel vulnerabilities. These vulnerabilities may allow a local attacker on a guest machine to sample the contents of memory...

5.9CVSS6.7AI score0.01553EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/05/29 12:0 a.m.48 views

Debian DLA-1799-2 : linux security update (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. This updated advisory text adds a note about the need to install new binary packages. CVE-2018-5995 ADLab of VenusTech discovered that the kernel logge...

8.3CVSS7.4AI score0.03278EPSS
Exploits6References18
Tenable Nessus
Tenable Nessus
added 2019/05/28 12:0 a.m.42 views

SUSE SLES12 Security Update : xen (SUSE-SU-2019:1349-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for xen fixes the following issues : Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12127: Microarchitectural Fill Buffer Data Sampling MFBDS...

9.8CVSS7.2AI score0.04428EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2019/05/23 12:0 a.m.44 views

Ubuntu 16.04 LTS / 18.04 LTS : Intel Microcode update (USN-3977-2)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3977-2 advisory. USN-3977-1 provided mitigations for Microarchitectural Data Sampling MDS vulnerabilities in Intel Microcode for a large number of Intel...

5.9CVSS6.7AI score0.01553EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/05/23 12:0 a.m.40 views

SUSE SLED15 / SLES15 Security Update : ucode-intel (SUSE-SU-2019:1313-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for ucode-intel fixes the following issues : The Intel CPU Microcode was updated to the official QSR 2019.1 Microcode release bsc1111331 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 ---- new platforms ---------------------------------------- VLV C0 6-37-8/02 00000838 At...

5.9CVSS6.6AI score0.01553EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2019/05/21 12:0 a.m.41 views

openSUSE Security Update : ucode-intel (openSUSE-2019-1408) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for ucode-intel fixes the following issues : This update contains the Intel QSR 2019.1 Microcode release boo1111331 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 Release notes : - Processor Identifier Version Products - Model Stepping F-MO-S/PI Old-New - ---- new platfor...

5.9CVSS6.5AI score0.01553EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2019/05/21 12:0 a.m.38 views

openSUSE Security Update : the Linux Kernel (openSUSE-2019-1407) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

The openSUSE Leap 42.3 kernel was updated to 4.4.179 to receive various security and bugfixes. Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 - CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS - CVE-2018-12127:...

9.3CVSS7.9AI score0.04458EPSS
Exploits1References119
Tenable Nessus
Tenable Nessus
added 2019/05/21 12:0 a.m.44 views

Fedora 28 : 2:qemu / libvirt (2019-6e146a714c) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Define md-clear CPUID bit. Assuming an updated host kernel and microcode, the md-clear bit will be automatically exposed to guests using the QEMU '-cpu host' arg, or libvirt 'host-model' or 'host-passthrough' configurations. Guests using a named CPU model it must be manually updated to add this...

5.9CVSS6.6AI score0.01553EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/05/21 12:0 a.m.30 views

openSUSE Security Update : qemu (openSUSE-2019-1420) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for qemu fixes the following issues : - CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091: Added x86 cpu feature 'md-clear' bsc1111331 This update was imported from the SUSE:SLE-12-SP3:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptiv...

5.9CVSS6.5AI score0.01553EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/05/20 12:0 a.m.36 views

SUSE SLES12 Security Update : kernel (SUSE-SU-2019:1287-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12127: Microarchitectura...

9.8CVSS7.5AI score0.07291EPSS
Exploits5References69
Tenable Nessus
Tenable Nessus
added 2019/05/20 12:0 a.m.47 views

SUSE SLES12 Security Update : kernel (SUSE-SU-2019:1289-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

The SUSE Linux Enterprise 12 SP1 LTSS kernel was updated to receive various security and bugfixes. Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12127:...

8.3CVSS7.8AI score0.24575EPSS
Exploits19References116
Tenable Nessus
Tenable Nessus
added 2019/05/20 12:0 a.m.45 views

Fedora 30 : xen (2019-6458474bf2) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Microarchitectural Data Sampling speculative side channel XSA-297, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091 additional patches so above applies cleanly work around grub2 issues in dom0 Note that Tenable Network Security has extracted the preceding description block directly...

5.9CVSS6.5AI score0.01553EPSS
Exploits0References5
Rows per page
Query Builder