Lucene search
K

727 matches found

Mageia
Mageia
added 2026/03/25 5:31 p.m.7 views

Updated xen packages fix security vulnerability

Use after free of paging structures in EPT. CVE-2026-23554...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.10 views

CVE-2026-23345

In the Linux kernel, the following vulnerability has been resolved: arm64: gcs: Do not set PTESHARED on GCS mappings if FEATLPA2 is enabled When FEATLPA2 is enabled, bits 8-9 of the PTE replace the shareability attribute with bits 50-51 of the output address. The PAGEGCS,RO definitions include th...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References5
OSV
OSV
added 2026/03/25 11:16 a.m.5 views

UBUNTU-CVE-2026-23345

In the Linux kernel, the following vulnerability has been resolved: arm64: gcs: Do not set PTESHARED on GCS mappings if FEATLPA2 is enabled When FEATLPA2 is enabled, bits 8-9 of the PTE replace the shareability attribute with bits 50-51 of the output address. The PAGEGCS,RO definitions include th...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/03/25 10:27 a.m.20 views

CVE-2026-23345 arm64: gcs: Do not set PTE_SHARED on GCS mappings if FEAT_LPA2 is enabled

In the Linux kernel, the following vulnerability has been resolved: arm64: gcs: Do not set PTESHARED on GCS mappings if FEATLPA2 is enabled When FEATLPA2 is enabled, bits 8-9 of the PTE replace the shareability attribute with bits 50-51 of the output address. The PAGEGCS,RO definitions include th...

0.00121EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/23 9:30 a.m.4 views

EUVD-2026-14382

The Intel EPT paging code uses an optimization to defer flushing of any cached EPT state until the p2m lock is dropped, so that multiple modifications done under the same locked region only issue a single flush. Freeing of paging structures however is not deferred until the flushing is done, and...

7.8CVSS5.9AI score0.00128EPSS
Exploits0References4
OSV
OSV
added 2026/03/23 7:16 a.m.6 views

ALPINE-CVE-2026-23554

The Intel EPT paging code uses an optimization to defer flushing of any cached EPT state until the p2m lock is dropped, so that multiple modifications done under the same locked region only issue a single flush. Freeing of paging structures however is not deferred until the flushing is done, and...

7.8CVSS5.9AI score0.00128EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/03/23 6:56 a.m.11 views

CVE-2026-23554

The Intel EPT paging code uses an optimization to defer flushing of any cached EPT state until the p2m lock is dropped, so that multiple modifications done under the same locked region only issue a single flush. Freeing of paging structures however is not deferred until the flushing is done, and...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/23 6:56 a.m.3 views

CVE-2026-23554 Use after free of paging structures in EPT

The Intel EPT paging code uses an optimization to defer flushing of any cached EPT state until the p2m lock is dropped, so that multiple modifications done under the same locked region only issue a single flush. Freeing of paging structures however is not deferred until the flushing is done, and...

5.9AI score0.00128EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2026/03/23 12:0 a.m.12 views

Fedora: Security Advisory (FEDORA-2026-8ae1a1c3d7)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.8AI score0.00181EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/03/19 12:0 a.m.4 views

openSUSE Security Advisory (SUSE-SU-2026:0908-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.8AI score0.00181EPSS
Exploits0References5
OSV
OSV
added 2026/03/17 4:32 p.m.4 views

SUSE-SU-2026:0908-1 Security update for xen

This update for xen fixes the following issues: - CVE-2026-23554: xen: Use after free of paging structures in EPT bsc1259247, XSA-480 - CVE-2026-23555: xen: Xenstored DoS by unprivileged domain bsc1259248, XSA-481...

7.8CVSS5.8AI score0.00181EPSS
Exploits0References5
Xen Project
Xen Project
added 2026/03/17 12:0 p.m.9 views

Use after free of paging structures in EPT

ISSUE DESCRIPTION The Intel EPT paging code uses an optimization to defer flushing of any cached EPT state until the p2m lock is dropped, so that multiple modifications done under the same locked region only issue a single flush. Freeing of paging structures however is not deferred until the...

7.8CVSS5.9AI score0.00128EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/02/21 12:0 a.m.5 views

SUSE SLED15 / SLES15 Security Update : xen (SUSE-SU-2026:0589-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0589-1 advisory. - CVE-2025-58150: buffer overrun with shadow paging + tracing XSA-477 bsc1256745. - CVE-2026-23553: incomplete...

8.8CVSS5.9AI score0.00129EPSS
Exploits0References8
OSV
OSV
added 2026/02/20 10:5 a.m.2 views

SUSE-SU-2026:0589-1 Security update for xen

This update for xen fixes the following issues: - CVE-2025-58150: buffer overrun with shadow paging + tracing XSA-477 bsc1256745. - CVE-2026-23553: incomplete IBPB for vCPU isolation XSA-479 bsc1256747...

8.8CVSS6AI score0.00129EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2026/02/20 10:5 a.m.4 views

Security update for xen

This update for xen fixes the following issues: CVE-2025-58150: buffer overrun with shadow paging + tracing XSA-477 bsc1256745. CVE-2026-23553: incomplete IBPB for vCPU isolation XSA-479 bsc1256747. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like...

6.8CVSS5.6AI score0.00129EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/02/16 7:30 p.m.8 views

CVE-2025-29939

Improper access control in secure encrypted virtualization SEV could allow a privileged attacker to write to the reverse map page RMP during secure nested paging SNP initialization, potentially resulting in a loss of guest memory confidentiality and integrity...

6.9CVSS5.5AI score0.00136EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/16 7:30 p.m.6 views

CVE-2025-48514

Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potentially resulting in a loss of confidentiality...

4CVSS5.5AI score0.00135EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/02/15 12:0 a.m.5 views

Fedora 42 : xen (2026-e39149a8a0)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-e39149a8a0 advisory. x86: buffer overrun with shadow paging + tracing XSA-477, CVE-2025-58150 x86: incomplete IBPB for vCPU isolation XSA-479, CVE-2026-23553 Tenable has...

8.8CVSS6AI score0.00129EPSS
Exploits0References3
NVD
NVD
added 2026/02/14 4:15 p.m.10 views

CVE-2025-71202

In the Linux kernel, the following vulnerability has been resolved: iommu/sva: invalidate stale IOTLB entries for kernel address space Introduce a new IOMMU interface to flush IOTLB paging cache entries for the CPU kernel address space. This interface is invoked from the x86 architecture code tha...

5.5CVSS0.00108EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/02/14 4:15 p.m.6 views

CVE-2025-71202

In the Linux kernel, the following vulnerability has been resolved: iommu/sva: invalidate stale IOTLB entries for kernel address space Introduce a new IOMMU interface to flush IOTLB paging cache entries for the CPU kernel address space. This interface is invoked from the x86 architecture code tha...

5.5CVSS5.8AI score0.00108EPSS
Exploits0References4
Rows per page
Query Builder