USN-5071-2 linux-hwe-5.4 vulnerabilities

USN-5071-1 fixed vulnerabilities in the Linux kernel for Ubuntu 20.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 20.04 LTS for Ubuntu 18.04 LTS. Maxim Levitsky and Paolo Bonzini discovered that the KVM hypervisor implementation for...

Siemens SIAMTIC CP343-1 缓冲区错误漏洞

The Communication Processor CP modules of the SIMATIC CP 343-1 and CP 443-1 series are designed to support the SIMATIC S7-300/S7-400 CPUs for Ethernet communication.The SIPLUS Extreme products are designed for reliable operation under extreme conditions and are based on SIMATIC, LOGO!, SITOP,...

PT-2021-7528 · Schneider Electric · Modicon M340 X80 Ethernet Communication Modules +5

Name of the Vulnerable Software and Affected Versions: Modicon M340 CPUs versions prior to V3.40 Modicon M340 X80 Ethernet Communication Modules versions all versions Modicon Premium Processors with integrated Ethernet versions all versions Modicon Quantum Processors with Integrated Ethernet...

CVE-2021-25452

An improper input validation vulnerability in loading graph file in DSP driver prior to SMR Sep-2021 Release 1 allows attackers to perform permanent denial of service on the device...

Cisco IOS XR 安全漏洞

Cisco IOS XR is an operating system developed by Cisco for its network devices. A security vulnerability exists in Cisco IOS XR that stems from a vulnerability in the Layer 2 code of the Cisco IOS XR software running on a router due to an error in the handling of specific Ethernet frames resultin...

Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver

✍️ Description Accept Bitcoin payments. Free, open-source & self-hosted, Bitcoin payment processor this package is vulnerable for xss 🕵️‍♂️ Proof of Concept 💥 Impact This vulnerability is capable of xss...

openSUSE 15 Security Update : xen (openSUSE-SU-2021:2923-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:2923-1 advisory. - Observable response discrepancy in some IntelR Processors may allow an authorized user to potentially enable information disclosure via...

Schneider Electric Modicon M580 CPU 缓冲区错误漏洞

The Schneider Electric Modicon M580 CPU is a processor module for the M580 Ethernet programmable automation controller from Schneider Electric, France. A security vulnerability exists in the Schneider Electric Modicon M580 CPU that originates from an out-of-bounds read in the Modicon M580 CPU par...

hw: Information disclosure issue in Intel SGX via RAPL interface

A vulnerability was found in Intel's implementation of RAPL Running Average Power Limit. An attacker with a local account could query the power management functionality to intelligently infer SGX enclave computation values by measuring power usage in the RAPL subsystem...

hw: Fast forward store predictor

A flaw was found in the CPU microarchitecture where a local attacker is able to abuse a timing issue which may allow them to infer internal architectural state from previous executions on the CPU...

hw: Vector Register Data Sampling

A flaw was found in Intel processors where a local attacker is able to gain information about registers used for vector calculations by observing register states from other processes running on the system. This results in a race condition where store buffers, which were not cleared, could be read...

DEBIAN-CVE-2021-28698

long running loops in grant table handling In order to properly monitor resource use, Xen maintains information on the grant mappings a domain may create to map grants offered by other domains. In the process of carrying out certain actions, Xen would iterate over all such entries, including ones...

PT-2021-6610 · Xen +1 · Xen +1

Name of the Vulnerable Software and Affected Versions: Xen affected versions not specified Description: The issue is related to long running loops in grant table handling. Xen maintains information on grant mappings a domain may create to map grants offered by other domains. When carrying out...

brainhance (=0.0.1), crystal4d (>=0.0.4 <=0.1.2) +4 more potentially affected by CVE-2021-37684 via tensorflow-gpu (>=2.4.0 <=2.4.2)

tensorflow-gpu PYPI version =2.4.0, =0.0.4, =1.1.1, =0.1.0.dev98, =1.0.0, =1.0.1 - tf-yarn-gpu =0.6.3 Source cves: CVE-2021-37684 Source advisory: OSV:GHSA-Q7F7-544H-67H9...

Cisco NX-OS Software 输入验证错误漏洞

Cisco NX-OS Software is a set of data center-class operating system software for switches from Cisco, U.S. A denial-of-service vulnerability exists in the VXLAN OAM feature of Cisco NX-OS Software, which can be exploited by attackers by sending specially crafted packets to cause high device CPU...

Xen 安全漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. Xen has a security vulnerability that can be...

hw: Fast forward store predictor

A flaw was found in the CPU microarchitecture where a local attacker is able to abuse a timing issue which may allow them to infer internal architectural state from previous executions on the CPU...

CVE-2021-0114

CVE-2021-0114 refers to an unchecked return value in the firmware for some Intel processors that could enable a local attacker to escalate privileges. The vulnerability is documented across multiple advisories (Intel IPU BIOS advisory and IBM HP/IBM QRadar related notes) and is described as a loc...

CVE-2021-0114

Unchecked return value in the firmware for some IntelR Processors may allow a privileged user to potentially enable an escalation of privilege via local access...

Debian: Security Advisory (DLA-2743)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...