51 matches found
CVE-2024-13855
The Prime Addons for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.0.1 via the paeglobalblock shortcode due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with...
CVE-2024-50115 KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory Ignore nCR34:0 when loading PDPTEs from memory for nested SVM, as bits 4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn't enforce 32-byte alignment of...
CVE-2024-50115 KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory Ignore nCR34:0 when loading PDPTEs from memory for nested SVM, as bits 4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn't enforce 32-byte alignment of...
CVE-2024-50115
CVE-2024-50115 is a Linux kernel vulnerability affecting KVM nSVM where loading PDPTEs from memory incorrectly handles nCR3[4:0]. The issue can cause an out-of-bounds read if a target page is at the end of a memslot, due to not enforcing 32-byte alignment when PAE paging is used. The root cause i...
SUSE: Security Advisory (SUSE-SU-2018:1784-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2017:2611-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux/x86 Encoder / Decoder Shellcode (117 bytes)
Title : Linux/x86 - Encoder - Random Bytes + XOR/SUB/NOT/ROR / Decoder - ROL/NOT/ADD/XOR execve/bin/sh Shellcode 117 bytes Author : Xenofon Vassilakopoulos Date : July, 2019 Tested on : Linux kali 5.3.0-kali2-686-pae 1 SMP Debian 5.3.9-3kali1 2019-11-20 i686 GNU/Linux Architecture : i686 GNU/Linu...
kernel security, bug fix, and enhancement update
3.10.0-957.27.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-957.27.2 - x86 hyper-v: fix hyperv.h UAPI header Vitaly Kuznetsov 1727109 169249...
Security fix for the ALT Linux 8 package kernel-image-std-pae version 1:4.4.159-alt0.M80P.1
1:4.4.159-alt0.M80P.1 built Oct. 9, 2018 kernelbot in task 213838 Oct. 1, 2018 Kernel Bot - v4.4.159 Fixes: CVE-2018-14633...
Security fix for the ALT Linux 8 package kernel-image-std-pae version 1:4.4.156-alt0.M80P.1
Sept. 17, 2018 Kernel Bot 1:4.4.156-alt0.M80P.1 - v4.4.156 Fixes: CVE-2018-6554, CVE-2018-6555...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.24.2 - x86/speculation/l1tf: Fix overflow in l1tfpfnlimit on 32bit Vlastimil Babka Orabug: 28505476 CVE-2018-3620 - x86/speculation/l1tf: Protect PAE swap entries against L1TF Vlastimil Babka Orabug: 28505476 CVE-2018-3620 - x86/speculation/l1tf: Extend 64bit swap file size...
March 23, 2018—KB4088881 (Preview of Monthly Rollup)
March 23, 2018—KB4088881 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4088875 released March 13, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Improves...
Security fix for the ALT Linux 8 package kernel-image-std-pae version 1:4.4.150-alt0.M80P.1
Aug. 21, 2018 Kernel Bot 1:4.4.150-alt0.M80P.1 - v4.4.150 Fixes: CVE-2018-9363...
Security fix for the ALT Linux 8 package kernel-image-std-pae version 1:4.4.140-alt0.M80P.1
1:4.4.140-alt0.M80P.1 built July 16, 2018 kernelbot in task 209821 July 11, 2018 Kernel Bot - v4.4.140 Fixes: CVE-2018-10876, CVE-2018-10877, CVE-2018-10881, CVE-2018-10882, CVE-2018-10883...
Security fix for the ALT Linux 8 package kernel-image-std-pae version 1:4.4.138-alt0.M80P.1
June 19, 2018 Kernel Bot 1:4.4.138-alt0.M80P.1 - v4.4.138 Fixes: CVE-2018-10853...
Security fix for the ALT Linux 8 package kernel-image-std-pae version 1:4.4.134-alt0.M80P.1
May 30, 2018 Kernel Bot 1:4.4.134-alt0.M80P.1 - v4.4.134 Fixes: CVE-2018-6412...
Security fix for the ALT Linux 8 package kernel-image-std-pae version 1:4.4.129-alt0.M80P.1
1:4.4.129-alt0.M80P.1 built April 26, 2018 kernelbot in task 205236 April 24, 2018 Kernel Bot - v4.4.129 Fixes: CVE-2018-1092...
Description of the security update for the speculative execution side-channel vulnerabilities in Windows Server 2008: March 13, 2018
Description of the security update for the speculative execution side-channel vulnerabilities in Windows Server 2008: March 13, 2018 Summary Microsoft is aware of a new publicly disclosed class of vulnerabilities referred to as "speculative execution side-channel attacks" that affect many modern...
Security fix for the ALT Linux 8 package kernel-image-std-pae version 1:4.4.126-alt0.M80P.1
1:4.4.126-alt0.M80P.1 built April 2, 2018 kernelbot in task 203309 April 1, 2018 Kernel Bot - v4.4.126 Fixes: CVE-2017-8824...
Security fix for the ALT Linux 8 package kernel-image-std-pae version 1:4.4.122-alt0.M80P.1
1:4.4.122-alt0.M80P.1 built March 23, 2018 kernelbot in task 202625 --- March 21, 2018 Kernel Bot &[email protected] - v4.4.122 Fixes: CVE-2018-1000004...