Lucene search
K

215 matches found

CVE
CVE
added 2025/07/17 1:59 p.m.90 views

CVE-2025-1713

CVE-2025-1713 : In Xen hypervisor, deadlock can occur when setting up interrupt remapping for legacy PCI(-X) devices, including bridges. The upstream bridge lookup requires acquiring a lock in a context where the lock is unsafe, creating a potential deadlock and impacting availability. Connected ...

7.5CVSS6.3AI score0.00723EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2025/07/17 1:59 p.m.9 views

CVE-2025-1713 deadlock potential with VT-d and legacy PCI device pass-through

When setting up interrupt remapping for legacy PCI-X devices, including PCI-X bridges, a lookup of the upstream bridge is required. This lookup, itself involving acquiring of a lock, is done in a context where acquiring that lock is unsafe. This can lead to a deadlock...

0.00723EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/17 1:59 p.m.2 views

CVE-2025-1713 deadlock potential with VT-d and legacy PCI device pass-through

When setting up interrupt remapping for legacy PCI-X devices, including PCI-X bridges, a lookup of the upstream bridge is required. This lookup, itself involving acquiring of a lock, is done in a context where acquiring that lock is unsafe. This can lead to a deadlock...

6.3AI score0.00723EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/07/11 7:0 a.m.10 views

KVM: x86: Reset IRTE to host control if *new* route isn't postable

...

7.8CVSS7AI score0.00249EPSS
Exploits0
OSV
OSV
added 2025/07/04 2:15 p.m.2 views

DEBIAN-CVE-2025-38216

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Restore context entry setup order for aliased devices Commit 2031c469f816 "iommu/vt-d: Add support for static identity domain" changed the context entry setup during domain attachment from a set-and-check policy to a...

7.8CVSS6.2AI score0.00142EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.3 views

Mechanistic Interpretability in the Presence of Architectural Obfuscation

Architectural obfuscation - e.g., permuting hidden-state tensors, linearly transforming embedding tables, or remapping tokens - has recently gained traction as a lightweight substitute for heavyweight cryptography in privacy-preserving large-language-model LLM inference. While recent work has sho...

6.9AI score
Exploits0
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2024-1a9b10c921)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.1AI score0.00265EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/05/09 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly resetting the IRTE, which could result in interrupt misdelivery...

7.8CVSS6.5AI score0.00249EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/04/25 7:37 a.m.19 views

CVE-2025-1713

A flaw was found in Xen's handling of interrupt remapping for legacy PCI-X devices when using Intel's VT-d. Specifically, acquiring a lock during the setup process in an unsafe context can lead to a deadlock. This issue can be triggered by passing through certain devices to unprivileged guests,...

6.5CVSS6.7AI score0.00723EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/24 12:0 a.m.8 views

PT-2025-20537

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been identified, related to KVM Kernel-based Virtual Machine on x86 systems. The issue arises when the new GSI route prevents posting the IRQ...

7.8CVSS6.7AI score0.00249EPSS
Exploits0
Rockylinux
Rockylinux
added 2025/03/17 8:16 p.m.8 views

virtio-win bug fix and enhancement update

An update is available for virtio-win. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Kernel-based Virtual Machine KVM offers a full virtualization solution...

7.4AI score
Exploits0
SUSE CVE
SUSE CVE
added 2025/02/28 2:22 a.m.3 views

SUSE CVE-2025-1713

When setting up interrupt remapping for legacy PCI-X devices, including PCI-X bridges, a lookup of the upstream bridge is required. This lookup, itself involving acquiring of a lock, is done in a context where acquiring that lock is unsafe. This can lead to a deadlock...

4.7CVSS6.8AI score0.00723EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.9 views

Fedora 41 : logiops (2024-1a9b10c921)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-1a9b10c921 advisory. Fixes CVE-2024-45752: A vulnerability that allows users to remap keys arbitrarily. This allows all users on the system to remap a key unexpectedly to a...

8.5CVSS5.5AI score0.00265EPSS
Exploits0References2
OSV
OSV
added 2024/11/08 3:7 p.m.3 views

OESA-2024-2345 mosquitto security update

Mosquitto is an open source message broker that implements the MQ Telemetry Transport protocol version 3.1 and 3.1.1 MQTT provides a lightweight method of carrying out messaging using a publish/subscribe model. This makes it suitable for "machine to machine" messaging such as with low power senso...

9.8CVSS6.8AI score0.579EPSS
Exploits2References3
OSV
OSV
added 2024/11/08 3:7 p.m.3 views

OESA-2024-2344 mosquitto security update

Mosquitto is an open source message broker that implements the MQ Telemetry Transport protocol version 3.1 and 3.1.1 MQTT provides a lightweight method of carrying out messaging using a publish/subscribe model. This makes it suitable for "machine to machine" messaging such as with low power senso...

9.8CVSS6.8AI score0.579EPSS
Exploits2References3
OSV
OSV
added 2024/11/08 3:7 p.m.5 views

OESA-2024-2343 mosquitto security update

Mosquitto is an open source message broker that implements the MQ Telemetry Transport protocol version 3.1 and 3.1.1 MQTT provides a lightweight method of carrying out messaging using a publish/subscribe model. This makes it suitable for "machine to machine" messaging such as with low power senso...

9.8CVSS6.8AI score0.579EPSS
Exploits2References3
SUSE CVE
SUSE CVE
added 2024/10/31 4:6 a.m.3 views

SUSE CVE-2024-3935

In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that makes use of topic remapping, then if the remote connection sends a crafted PUBLISH packet to the...

6.5CVSS7AI score0.00761EPSS
Exploits1References4
OSV
OSV
added 2024/10/30 12:15 p.m.2 views

DEBIAN-CVE-2024-3935

In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that makes use of topic remapping, then if the remote connection sends a crafted PUBLISH packet to the...

6.5CVSS5.4AI score0.00761EPSS
Exploits1References1
OSV
OSV
added 2024/10/30 12:15 p.m.13 views

CVE-2024-3935

In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that makes use of topic remapping, then if the remote connection sends a crafted PUBLISH packet to the...

6.5CVSS6.8AI score
Exploits0References4
OSV
OSV
added 2024/10/30 12:15 p.m.3 views

UBUNTU-CVE-2024-3935

In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that makes use of topic remapping, then if the remote connection sends a crafted PUBLISH packet to the...

6.5CVSS5.8AI score0.00761EPSS
Exploits1References6
Rows per page
Query Builder