96 matches found
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989930)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989930 advisory. In the Linux kernel, the following vulnerability has been resolved: vtioctl: fix arrayindexnospec in vtsetactivate arrayindexnospec ensures that an out-of-bounds val...
Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990020)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990020 advisory. In the Linux kernel, the following vulnerability has been resolved: dm ioctl: prevent potential spectre v1 gadget It appears like cmd could be a Spectre v1 gadget as...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989353)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989353 advisory. In the Linux kernel, the following vulnerability has been resolved: dm ioctl: prevent potential spectre v1 gadget It appears like cmd could be a Spectre v1 gadget as...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988990)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988990 advisory. In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix potential spectre v1 gadget It appears like nr could be a Spectre v1 gadget a...
Siemens SIMATIC Devices Improper Control of Resource Identifiers (CVE-2024-42265)
"In the Linux kernel, the following vulnerability has been resolved: protect the fetch of -fdfd in dodup2 from mispredictions both callers have verified that fd is not greater than -maxfds; however, misprediction might end up with tofree = fdt-fdfd; being speculatively executed. That's wrong for...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986363)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986363 advisory. In the Linux kernel, the following vulnerability has been resolved: vtioctl: fix arrayindexnospec in vtsetactivate arrayindexnospec ensures that an out-of-bounds val...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987269)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987269 advisory. In the Linux kernel, the following vulnerability has been resolved: vtioctl: fix arrayindexnospec in vtsetactivate arrayindexnospec ensures that an out-of-bounds val...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986613)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986613 advisory. In the Linux kernel, the following vulnerability has been resolved: vtioctl: fix arrayindexnospec in vtsetactivate arrayindexnospec ensures that an out-of-bounds val...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986985)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986985 advisory. In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix potential spectre v1 gadget It appears like nr could be a Spectre v1 gadget a...
EUVD-2025-29591
Malicious code in bioql PyPI...
AZL-74718 CVE-2025-39823 affecting package kernel for versions less than 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
CVE-2025-39823
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
AZL-67419 CVE-2025-39823 affecting package kernel for versions less than 6.6.104.2-1
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
UBUNTU-CVE-2025-39823
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
DEBIAN-CVE-2025-39823
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
CVE-2025-39823 KVM: x86: use array_index_nospec with indices that come from guest
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
CVE-2025-39823
CVE-2025-39823 is a Linux kernel KVM/CPU virtualization vulnerability affecting x86 where indices from the guest (min, dest_id) were used with array_index_nospec after bounds checks. The issue enables speculative execution side-channel leakage affecting confidentiality, integrity, and availabilit...
CVE-2025-39823 KVM: x86: use array_index_nospec with indices that come from guest
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not using arrayindexnospec for indexes from clients, which could lead to a speculative execution side-channel...
Linux Distros Unpatched Vulnerability : CVE-2023-0459
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Copyfromuser on 64-bit versions of the Linux kernel does not implement the uaccessbeginnospec allowing a user to bypass the accessok check and pass a kernel...