13 matches found
CVE-2025-68798 perf/x86/amd: Check event before enable to avoid GPF
In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd: Check event before enable to avoid GPF On AMD machines cpuc-eventsidx can become NULL in a subtle race condition with NMI-throttle-x86pmustop. Check event for NULL in amdpmuenableall before enable to avoid a GPF. Th...
Siemens SCALANCE and RUGGEDCOM Devices Improper Initialization (CVE-2024-50193)
x86/entry32: Clear CPU buffers after register restore in NMI return CPU buffers are currently cleared after call to excnmi, but before register state is restored. This may be okay for MDS mitigation but not for RDFS. Because RDFS mitigation requires CPU buffers to be cleared when registers don't...
EUVD-2011-2674
Malware in sbrugna...
CVE-2022-49781
In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd: Fix crash due to race between amdpmuenableall, perf NMI and throttling amdpmuenableall does: if !testbitidx, cpuc-activemask continue; amdpmuenableeventcpuc-eventsidx; A perf NMI of another event can come between...
DEBIAN-CVE-2022-49781
In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd: Fix crash due to race between amdpmuenableall, perf NMI and throttling amdpmuenableall does: if !testbitidx, cpuc-activemask continue; amdpmuenableeventcpuc-eventsidx; A perf NMI of another event can come between...
CVE-2022-49781 perf/x86/amd: Fix crash due to race between amd_pmu_enable_all, perf NMI and throttling
In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd: Fix crash due to race between amdpmuenableall, perf NMI and throttling amdpmuenableall does: if !testbitidx, cpuc-activemask continue; amdpmuenableeventcpuc-eventsidx; A perf NMI of another event can come between...
Linux Distros Unpatched Vulnerability : CVE-2024-39483
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked When requesting an NMI...
Azure Linux 3.0 Security Update: kernel (CVE-2024-39483)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39483 advisory. - In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: WARN on vNMI + NMI window iff...
CVE-2024-39483
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked When requesting an NMI window, WARN on vNMI support being enabled if and only if NMIs are actually masked, i.e. if the vCPU is already handling an NMI. KVM's ABI fo...
EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1488)
According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way the Linux kernel handled IRET faults during the processing of NMIs. An unprivileged, local user could...
Important: Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update
Updated kernel-rt packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which giv...
Linux Kernel - 'espfix64' Nested NMIs Interrupting Privilege Escalation
/ +++++ CVE-2015-3290 +++++ High impact NMI bug on x8664 systems 3.13 and newer, embargoed. Also fixed by: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9b6e6a8334d56354853f9c255d1395c2ba570e0a The other fix synchronous modifyldt does not fix CVE-2015-3290. You can...
Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) vulnerabilities (USN-2689-1)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2689-1 advisory. Andy Lutomirski discovered a flaw in the Linux kernel's handling of nested NMIs non-maskable interrupts. An unprivileged local user could exploit this fl...