CVE-2025-20100

Improper access control in the memory controller configurations for some IntelR XeonR 6 processor with E-cores may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2025-20054

Uncaught exception in the core management mechanism for some IntelR Processors may allow an authenticated user to potentially enable denial of service via local access...

CVE-2025-20047

Intel CNVi vulnerability CVE-2025-20047 affects Intel® Integrated Connectivity I/O interface on some Core™ Ultra Processors. The root cause is improper locking in CNVi that could allow an unauthenticated attacker with physical access to escalate privileges. Impact per sources is elevation of priv...

CVE-2025-20012

Incorrect behavior order for some IntelR Core™ Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access...

firefox: thunderbird: Use-after-free triggered by XSLTProcessor

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free...

kernel: x86/hyperv: fix kexec crash due to VP assist page corruption

in cpuhpsetupstate a requisite condition of "hypervinitcpuhp 0" for the hyperv case will never be true, and then hvcpudie won't be called on all CPUs and the VP assist page will not be reset. This leads to corruption of the previous VP assist page and ultimately panic if the kexec kernel is using...

kernel: uprobe: avoid out-of-bounds memory access of fetching args

An out-of-bounds overflow vulnerability was found in the Linux kernel. When Uprobe needs to fetch args into a per-CPU buffer and then copy to a ring buffer, sometimes user-space strings and arrays can be very large, but the size of the per-CPU buffer is only page size and checking is not performe...

kernel: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry

In the Linux kernel, the following vulnerability has been resolved: arm64: acpi: Harden getcpuforacpiid against missing CPU entry In a review discussion of the changes to support vCPU hotplug where a check was added on the GICC being enabled if was online, it was noted that there is need to map...

kernel: thermal: intel: int340x: processor: Fix warning during module unload

In the Linux kernel, the following vulnerability has been resolved: thermal: intel: int340x: processor: Fix warning during module unload The processorthermal driver uses pcimdeviceenable to enable a PCI device, which means the device will be automatically disabled on driver detach. Thus there is ...

Intel Xeon 6 Processor 访问控制错误漏洞

The Intel Xeon 6 Processor is a new generation of server processors from Intel aimed at data centers, artificial intelligence AI and high performance computing HPC. The Intel Xeon 6 Processor suffers from an improper access control vulnerability that stems from improper access control of the memo...

Lightweight Hybrid Block-Stream Cryptographic Algorithm for the Internet of Things

In this thesis, a novel lightweight hybrid encryption algorithm named SEPAR is proposed, featuring a 16-bit block length and a 128-bit initialization vector. The algorithm is designed specifically for application in Internet of Things IoT technology devices. The design concept of this algorithm i...

Intel® Xeon® 6 processor with E-cores Advisory

Summary: Potential security vulnerability in memory controller configurations for some Intel® Xeon® 6 processor with Efficient-cores E-cores may allow escalation of privilege. Intel is releasing a firmware update to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-201...

PT-2025-21093 · Intel · Intel Xeon 6

Name of the Vulnerable Software and Affected Versions: IntelR XeonR 6 processor with E-cores affected versions not specified Description: The issue is related to improper access control in the memory controller configurations for some IntelR XeonR 6 processors with E-cores. This may allow a...

Intel® Xeon® 6 processor E-Cores with Alias Checking Trusted Module Advisory

Summary: A potential security vulnerability in Alias Checking Trusted Module for some Intel® Xeon® 6 processor Efficient-Cores E-Cores may allow escalation of privilege. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-20004...

2025.2 IPU, Intel® Processor Advisory

Summary: Potential security vulnerabilities in some Intel® Processors may allow denial of service. Intel is releasing microcode updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2025-20103 Description: Insufficient resource pool in the core management mechanis...

PT-2025-21064 · Intel · Intel Xeon 6 Processor E-Cores Firmware

Name of the Vulnerable Software and Affected Versions: IntelR XeonR 6 processor E-Cores firmware affected versions not specified Description: The issue is related to insufficient control flow management in the Alias Checking Trusted Module. This may allow a privileged user to potentially enable...

Intel® Xeon® 6 processor with E-cores SGX and TDX Advisory

Summary: A potential security vulnerability in Intel Xeon 6 processor with Efficient-cores E-cores may allow escalation of privilege. Intel is releasing a microcode update to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-48869 Description: Improper restriction of...

Intel Data Center GPU Flex Series 缓冲区错误漏洞

Intel Data Center GPU Flex Series is Intel's high-performance GPU solution for data centers, mainly serving cloud gaming, AI visual inference, media processing and other scenarios. The Intel Data Center GPU Flex Series suffers from a buffer overflow vulnerability that originates from a boundary...

2025.1 IPU -Intel® Processor Advisory

Summary: A potential security vulnerability in some Intel® Processors may allow information disclosure. Intel is releasing microcode updates and prescriptive guidance to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-28956 Description: Exposure of Sensitive...

SUSE CVE-2025-37829

In the Linux kernel, the following vulnerability has been resolved: cpufreq: scpi: Fix null-ptr-deref in scpicpufreqgetrate cpufreqcpugetraw can return NULL when the target CPU is not present in the policy-cpus mask. scpicpufreqgetrate does not check for this case, which results in a NULL pointer...