213 matches found
SUSE CVE-2026-31782
In the Linux kernel, the following vulnerability has been resolved: perf/x86: Fix potential bad containerof in intelpmuhwconfig Auto counter reload may have a group of events with software events present within it. The software event PMU isn't the x86hybridpmu and a containerof operation in...
Astra Linux - уязвимость в linux-5.15
A use-after-free vulnerability in the Linux Kernel Performance Events system can be exploited to achieve local privilege escalation. The perfgroupdetach function did not check the attachstate of the event’s siblings before calling addeventtogroups, and the removeonexec function made it possible t...
Astra Linux - уязвимость в linux-5.10, linux, linux-5.15, linux-6.1
A heap-out-of-bounds write vulnerability in the Linux kernel’s Performance Events system component can be exploited to achieve local privilege escalation. The readsize of a perfevent can overflow, resulting in an out-of-bounds increment or write in perfreadgroup. We recommend upgrading to a versi...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
A heap out-of-bounds write vulnerability in the Linux Kernel Performance Events perf component of the Linux kernel can be exploited to achieve local privilege escalation. If the perfreadgroup function is called when the siblinglist of an event is smaller than that of its child, it may increment o...
CVE-2026-23435
In the Linux kernel, the following vulnerability has been resolved: perf/x86: Move event pointer setup earlier in x86pmuenable A production AMD EPYC system crashed with a NULL pointer dereference in the PMU NMI handler: BUG: kernel NULL pointer dereference, address: 0000000000000198 RIP:...
EUVD-2026-5908
In the Linux kernel, the following vulnerability has been resolved: perf: Fix refcount warning on event-mmapcount increment When calling refcountinc&event-mmapcount inside perfmmaprb, the following warning is triggered: refcountt: addition on 0; use-after-free. WARNING: lib/refcount.c:25 PoC:...
Azure Linux 3.0 Security Update: kernel (CVE-2025-37936)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37936 advisory. - In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: KVM: Mask PEBSENABLE...
Azure Linux 3.0 Security Update: kernel (CVE-2024-46848)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46848 advisory. - In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Limit the period on...
tracing: Do not register unsupported perf events
...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000627)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000627 advisory. arch/x86/kernel/cpu/perfeventintel.c in the Linux kernel before 3.8.9, when the Performance Events Subsystem is enabled, specifies an incorrect bitmask, which allows...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003183)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003183 advisory. Race condition in kernel/events/core.c in the Linux kernel before 4.9.7 allows local users to gain privileges via a crafted application that makes concurrent...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002431)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002431 advisory. kernel/events/core.c in the Linux kernel before 3.19 mishandles counter grouping, which allows local users to gain privileges via a crafted application, related to t...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002223)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002223 advisory. arch/x86/kernel/cpu/perfeventintel.c in the Linux kernel before 3.8.9, when the Performance Events Subsystem is enabled, specifies an incorrect bitmask, which allows...
CVE-2025-71125
CVE-2025-71125 affects the Linux kernel tracing subsystem. Synthetic events lack a function to register perf events, causing a NULL function pointer to be passed to tracepoint register logic and triggering a kernel warning in tracepoint_add_func. The patch replaces this path with a -ENODEV return...
CVE-2025-71125
In the Linux kernel, the following vulnerability has been resolved: tracing: Do not register unsupported perf events Synthetic events currently do not have a function to register perf events. This leads to calling the tracepoint register functions with a NULL function pointer which triggers:...
AZL-74357 CVE-2025-68798 affecting package kernel for versions less than 6.6.121.1-1
In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd: Check event before enable to avoid GPF On AMD machines cpuc-eventsidx can become NULL in a subtle race condition with NMI-throttle-x86pmustop. Check event for NULL in amdpmuenableall before enable to avoid a GPF. Th...
CVE-2025-68798
CVE-2025-68798: Linux kernel AMD perf event hotpath GPF in amd_pmu_enable_all due to a race where cpuc->events[idx] could be NULL. The patch adds a NULL check in amd_pmu_enable_all() before enabling events to avoid a general protection fault (GPF). Public writeups in the connected OSV update c...
CVE-2025-68375 perf/x86: Fix NULL event access and potential PEBS record loss
In the Linux kernel, the following vulnerability has been resolved: perf/x86: Fix NULL event access and potential PEBS record loss When intelpmudrainpebsicl is called to drain PEBS records, the perfeventoverflow could be called to process the last PEBS record. While perfeventoverflow could trigge...
EUVD-2011-2891
Malware in sbrugna...
EUVD-2013-2111
Malware in sbrugna...