8 matches found
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002539)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002539 advisory. arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks...
EUVD-2018-7468
Malware in sbrugna...
K26301924: Linux kernel vulnerability CVE-2018-15594
Security Advisory Description arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtual guests. CVE-2018-15594 Impact Traffix SDC When this vulnerability is exploited, an...
DEBIAN-CVE-2022-33745
insufficient TLB flush for x86 PV guests in shadow mode For migration as well as to work around kernels unaware of L1TF see XSA-273, PV guests may be run in shadow paging mode. To address XSA-401, code was moved inside a function in Xen. This code movement missed a variable changing meaning / val...
kernel: Mishandling of indirect calls weakens Spectre mitigation for paravirtual guests
It was found that paravirtpatchcall/jump functions in the arch/x86/kernel/paravirt.c in the Linux kernel mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtualized guests...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4208)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4208 advisory. - Cipso: cipsov4optptr enter infinite loop yujuan.qi Orabug: 28563992 CVE-2018-10938 - x86/paravirt: Fix spectre-v2 mitigations for paravirt guests...
CVE-2018-15594
arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtual guests...
CVE-2018-15594
arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtual guests...