Lucene search
K

727 matches found

CNNVD
CNNVD
added 2026/05/28 12:0 a.m.13 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the accidental reuse of freed memory due to an unexpected GFN in KVM x86 shadow paging...

8.8CVSS5.8AI score0.00126EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.27 views

PT-2026-44236

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the KVM x86 shadow paging mechanism. The shadow MMU calculates Guest Frame Numbers GFNs for direct shadow pages by adding the SPTE index to sp-gfn. This...

8.8CVSS5.9AI score0.00126EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Resolved the race condition between SECS reclaiming and page fault for EAUG. The SGX EPC reclaimer ksgxd may reclaim the SECS EPC page for an enclave and set secs.epcpage to NULL. The SECS page is used for EAUG and ELDU ...

4.7CVSS5AI score0.00225EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: x86/alternatives: Disabling KASAN during applyalternatives Fei reported that KASAN is triggered during applyalternatives on a 5-level paging machine: BUG: KASAN: Out-of-bounds access in rcuiswatching A read of size 4 at address...

7.1CVSS6AI score0.00275EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: m68k: mm: Move initrd phystovirt handling after paginginit When booting with an initial ramdisk on platforms where physical memory does not start at address zero e.g., on the Amiga: initrd: 0ef0602c - 0f800000 Zone ranges: DMA me...

5.3AI score0.00166EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10, Linux

With shadow paging enabled, the INVPCID instruction results in a call to kvmmmuinvpcidgva. If INVPCID is executed with CR0.PG=0, the invlpg callback is not set, and the result is a NULL pointer dereference...

6.9CVSS6.7AI score0.00318EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fixed an oops in port-pm when calling uartchangepm Unloading a hardware-specific 8250 driver may cause an error “Unable to handle kernel paging request at virtual address” about ten seconds after unloading the drive...

6AI score0.00177EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: f2fs: fixed the assignment logic of iocb. Commit 18ae8d12991b “f2fs: shows more DIO information at the tracepoint” introduced the iocb field in the ‘f2fsdirectIOenter’ trace event. It only assigns the pointer and then accesses...

7.1CVSS5.8AI score0.00147EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Only warnings are issued when overwriting a shadow-present SPTE, specifically when the operation is performed on direct MMUs. This adjustment applies only to MMUs that do not have shadowed gPTEs. Although it’s...

5.5CVSS6AI score0.00165EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: ACPI: PRM: Find the EFIMEMORYRUNTIME block for the PRM handler and context PRMT needs to find the correct type of block to translate the PA-VA mapping for EFI runtime services. The issue arises because PRMT is looking for a block...

5.5CVSS6.4AI score0.00232EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Write-protecting of L2 SPTEs in TDP MMU when clearing dirty status Check kvmmmupageadneedwriteprotect when deciding whether to write-protect or clear D-bits on TDP MMU SPTEs. This ensures that the TDP MMU takes into...

5.5CVSS6.2AI score0.00224EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2026/05/13 10:5 a.m.9 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix the following issue: CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264449. CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present bsc1264450. Special Instructions and Notes: Plea...

8.8CVSS6AI score0.93235EPSS
Exploits33References8
EUVD
EUVD
added 2026/05/13 3:2 a.m.15 views

EUVD-2025-209811

Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity...

5.9CVSS5.8AI score0.00116EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/05/13 12:0 a.m.17 views

Insecure Despite Proven Updated: Extracting the Root VCEK Seed on EPYC Milan Via a Software-Only Attack

In the official whitepaper of Secure Encrypted Virtualization with Secure Nested Paging SEV-SNP, AMD explicitly emphasizes the capability to prevent Trusted Computing Base TCB rollback attacks. Cryptographically, this is realized by signing attestation reports with the Versioned Chip Endorsement...

6.2AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:7 a.m.4 views

KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish

...

7CVSS5.2AI score0.00122EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/26 12:0 a.m.7 views

Unity Linux 20.1060a Security Update: kernel (UTSA-2026-014325)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014325 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix oops for port-pm on uartchangepm Unloading a hardware specific 8250 driver can...

5.4AI score0.00177EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/24 7:16 p.m.9 views

CVE-2026-31595

A flaw was found in the Linux kernel's pci-epf-vntb module. This vulnerability occurs due to improper handling of the cmdhandler work during the epfntbepccleanup process. If the delayed work is not disabled before clearing BAR mappings and doorbells, the handler can attempt to access resources th...

5.5CVSS5.4AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/24 7:8 p.m.7 views

CVE-2026-31593

A flaw was found in the Linux kernel's KVM Kernel-based Virtual Machine virtualization module. When Secure Nested Paging SNP is enabled, an attempt to update the state of an already running and encrypted virtual machine can cause the host system to crash. This vulnerability leads to a Denial of...

5.5CVSS5.4AI score0.00122EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/24 7:5 p.m.7 views

CVE-2026-31591

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. This vulnerability allows a local user in userspace to manipulate or run a virtual CPU vCPU while its state is being synchronized during the Secure Nested Paging SNP launch process. This improper synchronization ca...

5.5CVSS5.5AI score0.00122EPSS
Exploits0References4
NVD
NVD
added 2026/04/24 3:16 p.m.6 views

CVE-2026-31591

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish Lock all vCPUs when synchronizing and encrypting VMSAs for SNP guests, as allowing userspace to manipulate and/or run a vCPU while its state is being...

5.5CVSS0.00122EPSS
Exploits0References4
Rows per page
Query Builder