The vulnerability of AMD’s microprogramming software for processors, related to the reordering of load instructions, allows attackers to gain unauthorized access to protected information.

The vulnerability of AMD’s microprogrammed software for processors is related to the reordering of load instructions. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

Amazon Linux AMI : microcode_ctl (ALAS-2022-1606)

The version of microcodectl installed on the remote host is prior to 2.1-47.40. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2022-1606 advisory. 2024-05-09: CVE-2021-33117 was added to this advisory. Improper access control for some 3rd Generation IntelR XeonR...

Malicious Package

Overview cloudwatchevents-processor is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if thi...

MediaTek 芯片缓冲区错误漏洞

MediaTek Inc. is the world's fourth largest fab-based semiconductor company and a leader in the markets of mobile terminals, smart home applications, wireless connectivity and Internet of Things IoT products, with approximately 1.5 billion units of end products with built-in MediaTek chips hittin...

MediaTek 芯片代码问题漏洞

MediaTek Inc. is the world's fourth largest fab-based semiconductor company and a leader in the markets of mobile terminals, smart home applications, wireless connectivity and Internet of Things IoT products, with approximately 1.5 billion units of end products with built-in MediaTek chips hittin...

[SECURITY] Fedora 36 Update: golang-github-pdfcpu-0.3.13-2.fc36

A PDF processor written in Go...

[SECURITY] Fedora 36 Update: golang-github-mmarkdown-mmark-2.2.10-5.fc36

Mmark is a powerful markdown processor written in Go, geared towards writing IETF documents. It is, however, also suited for writing complete books and ot her technical documentation, like the Learning Go book mmark source, and I-D text output...

The vulnerability of the Item_func_in::cleanup/Item::cleanup_processor function in the MariaDB database management system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Itemfuncin::cleanup/Item::cleanupprocessor function in the MariaDB database management system is related to the execution of operations outside of memory buffers. Exploitation of this vulnerability could allow a malicious actor to compromise the confidentiality, integrity...

CVE-2022-32085

MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Itemfuncin::cleanup/Item::cleanupprocessor...

MariaDB 安全漏洞

MariaDB is a free and open source database management system from the Mariadb Foundation and a version of the MySQL branch that uses the Maria storage engine.MariaDB has a security vulnerability that originated through the component Itemfuncin::cleanup/Item::cleanupprocessor found A segmentation...

AZL-10003 CVE-2022-1852 affecting package kernel for versions less than 5.15.55.1-1

A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU...

Unbreakable Enterprise kernel security update

5.15.0-0.30.19 - net/mlx4: Increase numsrq in lowmemprofile Dave Kleikamp Orabug: 34052160 5.15.0-0.30.18 - Revert ocfs2: mount shared volume without ha stack Junxiao Bi Orabug: 33701900 - KVM: x86/speculation: Disable Fill buffer clear within guests Pawan Gupta Orabug: 34202258 CVE-2022-21123...

CVE-2022-33021

CVA6 commit 909d85a accesses invalid memory when reading the value of MHPMCOUNTER30...

CVE-2022-33023

CVA6 commit 909d85a gives incorrect permission to use special multiplication units when the format of instructions is wrong...

RSSHub 资源管理错误漏洞

RSSHub is an RSS feed generator written in Node.js, distributed under the MIT license and maintained by DIYgod and other GitHub users. A resource management error vulnerability exists in versions of RSSHub prior to 2020-02-09, which stems from the fact that parameters such as filter and filterout...

CVA6 安全漏洞

CVA6 is an application class 6 RISC-V CPU open-sourced by the OpenHW Group in Canada. A security vulnerability exists in CVA6 that stems from giving incorrect permission to use special multiplication units when instructions are formatted incorrectly...

GSD-2022-1003931 x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data

x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.284 by commit...

GSD-2022-1003815 x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data

x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.248 by commit...

GSD-2022-1003663 x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data

x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.199 by commit...

GSD-2022-1003462 x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data

x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.123 by commit...