PT-2024-19048 · Intel · Intel Processor Identification Utility

Name of the Vulnerable Software and Affected Versions: IntelR Processor Identification Utility versions prior to 6.10.34.1129 IntelR Processor Identification Utility versions prior to 7.1.6 Description: The issue is related to an uncontrolled search path in some IntelR Processor Identification...

Intel Processor Diagnostic Tool 安全漏洞

Intel Processor Diagnostic Tool IPDT is a processor functionality diagnostic tool from Intel Corporation USA. A security vulnerability previously existed in Intel Processor Diagnostic Tool version 4.1.9.41, which stemmed from an uncontrolled search path issue. It could allow an authenticated user...

The vulnerability of the `__sev_platform_shutdown_locked()` function in the Linux operating system’s cryptographic processor driver by AMD allows a hacker to trigger a shutdown failure.

The vulnerability of the sevplatformshutdownlocked function in the drivers/crypto/ccp/sev-dev.c file of the Linux operating system’s cryptographic processor driver software is related to the assignment of a zero pointer. Exploiting this vulnerability could allow an attacker to trigger a service...

CVE-2024-0762

Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platforms This issue affects: Phoenix SecureCore™ for Intel Kaby Lake: from 4.0.1.1 before 4.0.1.998; Phoenix SecureCore™ for Intel Coffee Lake: from 4.1.0.1 before 4.1.0.562; Phoenix SecureCore™ fo...

DEBIAN-CVE-2024-29857

An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java before 1.78, BC Java LTS before 2.73.6, BC-FJA before 1.0.2.5, and BC C .Net before 2.3.1. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of th...

BIT-ELASTICSEARCH-2024-23449 Elasticsearch Uncaught Exception

An uncaught exception in Elasticsearch = 8.4.0 and 8.11.1 occurs when an encrypted PDF is passed to an attachment processor through the REST API. The Elasticsearch ingest node that attempts to parse the PDF file will crash. This does not happen with password-protected PDF files or with unencrypte...

Phoenix Technologies GeminiLake 安全漏洞

Phoenix Technologies GeminiLake is a low power processor product from Phoenix Technologies. A security vulnerability exists in Phoenix Technologies GeminiLake that stems from the presence of a buffer overflow vulnerability...

Intel® Processor Diagnostic Tool Advisory

Summary: A potential security vulnerability in some Intel® Processor Diagnostic Tool software may allow escalation of privilege. Intel is releasing updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-21831 Description: Uncontrolled search path in some Intel®...

Intel® Core™ Ultra Processor Advisory

Summary: A potential security vulnerability in Intel® Core™ Ultra Processors may allow denial of service. Intel is releasing microcode updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2023-46103 Description: Sequence of processor instructions leads to unexpected...

Intel® Processor Identification Utility Software Advisory

Summary: Potential security vulnerability in some Intel® Processor Identification Utility software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerability. Vulnerability Details: CVEID: CVE-2024-21774 Description: Uncontrolled search path i...

bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator

Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side. This vulnerability applies only for systems where DNSSEC validation is enabled...

bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources

A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host. This vulnerability applies only for systems where DNSSE...

RHEL 5 : hw (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - hw: TSX Transaction Asynchronous Abort TAA CVE-2019-11135 - hw: Fast forward store predictor CVE-2020-869...

jose-go: improper handling of highly compressed data

A vulnerability was found in Jose due to improper handling of highly compressed data. This issue could allow an attacker to send a JWE containing compressed data that uses large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti...

SUSE CVE-2022-48674

In the Linux kernel, the following vulnerability has been resolved: erofs: fix pcluster use-after-free on UP platforms During stress testing with CONFIGSMP disabled, KASAN reports as below: ================================================================== BUG: KASAN: use-after-free in...

CVE-2023-33119

Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache...

CVE-2024-21476 Improper Input Validation in Secure Processor

Memory corruption when the channel ID passed by user is not validated and further used...

CVE-2024-21476 Improper Input Validation in Secure Processor

Memory corruption when the channel ID passed by user is not validated and further used...

CVE-2023-33119 Time-of-check Time-of-use (TOCTOU) Race Condition in Hypervisor

Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache...

CVE-2023-33119

CVE-2023-33119 describes a memory corruption in a Qualcomm closed‑source component triggered while loading a VM from a signed VM image that is not coherent in the processor cache. Connected records corroborate impact as LOCAL with high severity (CONFIDENTIALITY, INTEGRITY, AVAILABILITY affected) ...