Lucene search
K

15 matches found

OSV
OSV
added 2026/05/07 3:16 p.m.19 views

USN-8257-1 linux-raspi vulnerabilities

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...

9.8CVSS6.6AI score0.00812EPSS
Exploits1References142
OSV
OSV
added 2026/04/06 9:59 p.m.18 views

USN-8152-1 linux-oem-6.17 vulnerabilities

It was discovered that some AMD Zen 5 processors supporting RDSEED instruction did not properly handle entropy, potentially resulting in the consumption of insufficiently random values. A local attacker could possibly use this issue to influence the values returned by the RDSEED instruction causi...

9.8CVSS7.3AI score0.00378EPSS
Exploits7References188
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.15 views

Ubuntu Pro Realtime 22.04 LTS : Linux kernel (Intel IoTG Real-time) vulnerabilities (USN-8116-1)

"The remote Ubuntu Pro Realtime 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8116-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

9.8CVSS6.6AI score0.00519EPSS
Exploits3References218
OSV
OSV
added 2026/02/24 6:36 p.m.7 views

USN-8028-8 linux-ibm, linux-ibm-6.8 vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS6.8AI score0.09796EPSS
Exploits8References754
OSV
OSV
added 2026/02/19 9:26 a.m.8 views

USN-8031-3 linux-gcp, linux-gke vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS6.8AI score0.09796EPSS
Exploits8References753
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.10 views

EulerOS 2.0 SP10 : kernel (EulerOS-SA-2026-1101)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : sfc: fix use after free when disabling sriovCVE-2022-49626 gfs2: Check sbbsizeshift after reading superblockCVE-2022-49769 dm ioctl: fix misbehavi...

7.8CVSS6.9AI score0.09117EPSS
Exploits0References60
OSV
OSV
added 2025/12/04 11:23 a.m.12 views

USN-7910-1 linux-azure-fips vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS6.5AI score0.0037EPSS
Exploits3References179
Tenable Nessus
Tenable Nessus
added 2025/11/11 12:0 a.m.7 views

Ubuntu Pro FIPS 16.04 LTS : Linux kernel (FIPS) vulnerabilities (USN-7865-1)

"The remote Ubuntu Pro FIPS 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7865-1 advisory. Jean-Claude Graf, Sandro Regge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor...

7.8CVSS7.6AI score0.01345EPSS
Exploits8References23
OSV
OSV
added 2025/10/30 8:3 p.m.6 views

USN-7853-2 linux-fips, linux-aws-fips, linux-gcp-fips vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS6.6AI score0.01345EPSS
Exploits8References12
OSV
OSV
added 2025/06/24 12:36 a.m.12 views

USN-7592-1 linux-aws-5.15, linux-gcp-5.15, linux-ibm-5.15, linux-lowlatency-hwe-5.15, linux-oracle-5.15 vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...

8.8CVSS6.8AI score0.02033EPSS
Exploits0References71
OSV
OSV
added 2025/03/28 6:49 p.m.3 views

USN-7392-2 linux-azure-fips, linux-gcp-fips vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Attila Szász discovered that the HFS+ file system...

7.8CVSS7.1AI score0.03558EPSS
Exploits1References155
OSV
OSV
added 2025/03/28 6:47 p.m.4 views

USN-7393-1 linux-fips vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Attila Szász discovered that the HFS+ file system...

9.1CVSS6.7AI score0.03558EPSS
Exploits2References296
OSV
OSV
added 2025/03/28 12:59 p.m.25 views

USN-7389-1 linux-nvidia-tegra, linux-nvidia-tegra-igx vulnerabilities

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service system crash or possibly execute arbitrary code...

8.1CVSS6.7AI score0.03558EPSS
Exploits5References358
OSV
OSV
added 2024/12/20 8:33 p.m.8 views

USN-7179-1 linux, linux-gkeop, linux-ibm, linux-ibm-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-oracle-5.15 vulnerabilities

Andy Nguyen discovered that the Bluetooth L2CAP implementation in the Linux kernel contained a type-confusion error. A physically proximate remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-12351 Andy Nguyen discovered that the...

8.8CVSS7.5AI score0.07693EPSS
Exploits7References15
OSV
OSV
added 2024/10/31 3:50 p.m.10 views

USN-7088-1 linux, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4 vulnerabilities

Ziming Zhang discovered that the VMware Virtual GPU DRM driver in the Linux kernel contained an integer overflow vulnerability. A local attacker could use this to cause a denial of service system crash. CVE-2022-36402 Several security issues were discovered in the Linux kernel. An attacker could...

8.8CVSS6.5AI score0.00879EPSS
Exploits6References163
Rows per page
Query Builder