15 matches found
EUVD-2018-2304
Malware in sbrugna...
RHEL 7 : qemu-kvm-rhev (RHSA-2019:1199)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1199 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provi...
RHEL 7 : qemu-kvm-rhev (RHSA-2019:1202)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1202 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provi...
Buffer Overflow
arm-trusted-firmware:sid is vulnerable to Buffer Overflow. The vulnerability due to downstream use of getext and authnvctr. It allows an attacker can trigger dangerous read side effects or obtain sensitive information about micro architectural state...
CVE-2023-23583
A security vulnerability was found in some Intel processors. Execution of REP MOVSB instructions with a redundant REX prefix may result in execution continuing at an incorrect EIP address after a micro-architectural event occurs, potentially allowing privilege escalation, information disclosure...
K21344224: Lazy FP state restore vulnerability CVE-2018-3665
Security Advisory Description System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel. CVE-2018-3665 A Floating-Point FP state...
CentOS 8 : kernel (CESA-2019:1167)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:1167 advisory. - hardware: Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12126 - hardware: Micro-architectural Load Port Data Sampling - Information Le...
CentOS 8 : virt:rhel (CESA-2019:1175)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:1175 advisory. - hardware: Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12126 - hardware: Micro-architectural Load Port Data Sampling - Information Le...
hardware: Micro-architectural Load Port Data Sampling - Information Leak (MLPDS)
Microprocessors use a ‘load port’ subcomponent to perform load operations from memory or IO. During a load operation, the load port receives data from the memory or IO subsystem and then provides the data to the CPU registers and operations in the CPU’s pipelines. Stale load operations results ar...
hardware: Micro-architectural Load Port Data Sampling - Information Leak (MLPDS)
Microprocessors use a ‘load port’ subcomponent to perform load operations from memory or IO. During a load operation, the load port receives data from the memory or IO subsystem and then provides the data to the CPU registers and operations in the CPU’s pipelines. Stale load operations results ar...
F5 Networks BIG-IP : Lazy FP state restore vulnerability (K21344224)
The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.1.2 / 14.0.0.3 / 14.1.0. It is, therefore, affected by a vulnerability as referenced in the K21344224 advisory. System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocesso...
Design/Logic Flaw
A hardware vulnerability in GPU memory modules allows attackers to accelerate micro-architectural attacks through the use of the JavaScript WebGL API...
CVE-2018-10229
A hardware vulnerability in GPU memory modules allows attackers to accelerate micro-architectural attacks through the use of the JavaScript WebGL API...
CVE-2018-10229
A hardware vulnerability in GPU memory modules allows attackers to accelerate micro-architectural attacks through the use of the JavaScript WebGL API...
CVE-2018-10229
CVE-2018-10229 describes a hardware vulnerability in GPU memory modules that enables attackers to accelerate micro-architectural attacks via the JavaScript WebGL API. Public sources consistently tie the issue to GPU memory sharing with the CPU (e.g., integrated GPUs) and to WebGL timing-based sid...