Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags TIFs for the task and updates the SPECCTRL MSR in the function speculationctrlupdate, but the IBPB is only issued at the next schedul...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004434)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004434 advisory. A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl function, where it can be used to enable indirect branch speculation after it has been disabled. Thi...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003885)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003885 advisory. A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl function, where it can be used to enable indirect branch speculation after it has been disabled. Thi...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002284)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002284 advisory. arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001770)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001770 advisory. The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000500)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000500 advisory. A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl function, where it can be used to enable indirect branch speculation after it has been disabled. Thi...

EUVD-2020-3183

Malware in sbrugna...

EUVD-2006-3621

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414330)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414330 advisory. The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags...

EUVD-2023-12148

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2020-10768

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl function, where it can be used to enable indirect branch speculation after it has been disabled...

SUSE-SU-2025:20361-1 Security update for glibc

This update for glibc fixes the following issues: - CVE-2025-4802: elf: Ignore LDLIBRARYPATH and debug env var for setuid for static bsc1243317 - pthreads NPTL: lost wakeup fix 2 bsc1234128, BZ 25847 - Mark functions in libcnonshared.a as hidden bsc1239883 - Linux: Switch back to assembly syscall...

Security update for glibc

This update for glibc fixes the following issues: CVE-2025-4802: elf: Ignore LDLIBRARYPATH and debug env var for setuid for static bsc1243317 pthreads NPTL: lost wakeup fix 2 bsc1234128, BZ 25847 Mark functions in libcnonshared.a as hidden bsc1239883 Linux: Switch back to assembly syscall wrapper...

UBUNTU-CVE-2022-49870

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined behavior in bit shift for CAPTOMASK Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds in...

Linux Distros Unpatched Vulnerability : CVE-2023-0045

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information...

Siemens SCALANCE W700 Externally Controlled Reference to a Resource in Another Sphere (CVE-2023-0045)

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags TIFs for the task and updates the SPECCTRL MSR on the function speculationctrlupdate, but the IBPB is only issued on the next schedul...

SUSE CVE-2023-0045

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags TIFs for the task and updates the SPECCTRL MSR on the function speculationctrlupdate, but the IBPB is only issued on the next schedul...

kernel: Spectre v2 SMT mitigations problem

It was found that the Linux Kernel still left the victim process exposed to attacks in some cases even after enabling the spectre-BTI mitigation with prctl. The kernel failed to protect applications that attempted to protect against Spectre v2 leaving them open to attack from other processes...

kernel: Spectre v2 SMT mitigations problem

It was found that the Linux Kernel still left the victim process exposed to attacks in some cases even after enabling the spectre-BTI mitigation with prctl. The kernel failed to protect applications that attempted to protect against Spectre v2 leaving them open to attack from other processes...

EulerOS Virtualization 2.10.0 : kernel (EulerOS-SA-2023-2488)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can le...