Lucene search
K

21 matches found

CVE
CVE
added 2026/05/28 9:36 a.m.27 views

CVE-2026-46147

CVE-2026-46147 concerns the Linux kernel KVM on ARM64, where two bugs in vCPU initialisation can leak pin references to host vCPU/SVE pages and allow observation of a partially initialised vCPU object. The fixes extract a helper for vCPU registration, ensure proper unpinning on error, and enforce...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2026/02/05 12:24 a.m.5 views

SUSE CVE-2026-23107

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA The code to restore a ZA context doesn't attempt to allocate the task's svestate before setting TIFSME. Consequently, restoring a ZA context can place a task into an...

5.5CVSS5.4AI score0.00126EPSS
Exploits0References19
OSV
OSV
added 2026/02/04 5:16 p.m.6 views

UBUNTU-CVE-2026-23107

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA The code to restore a ZA context doesn't attempt to allocate the task's svestate before setting TIFSME. Consequently, restoring a ZA context can place a task into an...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References15
UbuntuCve
UbuntuCve
added 2026/02/04 5:16 p.m.5 views

CVE-2026-23107

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA The code to restore a ZA context doesn't attempt to allocate the task's svestate before setting TIFSME. Consequently, restoring a ZA context can place a task into an...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References12
CVE
CVE
added 2026/02/04 4:8 p.m.20 views

CVE-2026-23107

CVE-2026-23107 describes a Linux kernel issue in arm64/fpsimd where restoring a ZA (Streaming/SME) context could leave sve_state NULL if allocated late, causing a NULL pointer dereference when the kernel stores register state if TIF_SME is set. The root cause is that restore_za_context() failed t...

5.5CVSS5.4AI score0.00126EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/02/04 4:8 p.m.6 views

EUVD-2026-5434

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA The code to restore a ZA context doesn't attempt to allocate the task's svestate before setting TIFSME. Consequently, restoring a ZA context can place a task into an...

5.4AI score0.00126EPSS
Exploits0References4
OSV
OSV
added 2026/02/04 4:8 p.m.5 views

CVE-2026-23107 arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA The code to restore a ZA context doesn't attempt to allocate the task's svestate before setting TIFSME. Consequently, restoring a ZA context can place a task into an...

5.5CVSS5.4AI score0.00126EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.7 views

PT-2026-6177

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-rc1 Description The Linux kernel contains a flaw in the arm64/fpsimd component related to signal handling and the restoration of ZA zeroed address space contexts. The code responsible for restoring a ZA...

5.5CVSS5.5AI score0.00126EPSS
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2023-59792

Malicious code in bioql PyPI...

6.3AI score0.00151EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-10342

Malicious code in bioql PyPI...

7.2AI score0.00172EPSS
Exploits0References7
OSV
OSV
added 2025/09/15 2:15 p.m.1 views

DEBIAN-CVE-2023-53184

In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Set new vector length before reallocating As part of fixing the allocation of the buffer for SVE state when changing SME vector length we introduced an immediate reallocation of the SVE state, this is also done when...

7.8CVSS6.6AI score0.00151EPSS
Exploits0References1
NVD
NVD
added 2025/09/15 2:15 p.m.6 views

CVE-2023-53184

In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Set new vector length before reallocating As part of fixing the allocation of the buffer for SVE state when changing SME vector length we introduced an immediate reallocation of the SVE state, this is also done when...

7.8CVSS0.00151EPSS
Exploits0References3
CVE
CVE
added 2025/09/15 2:4 p.m.15 views

CVE-2023-53184

The CVE-2023-53184 entry concerns a Linux kernel vulnerability in arm64 SME (SVE state handling). The root cause is that the vector length is updated after allocating the SVE state, causing allocation with the old length and potential memory corruption from an undersized buffer. The fix moves the...

7.8CVSS6.3AI score0.00151EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/07/03 9:15 a.m.1 views

DEBIAN-CVE-2025-38170

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: Discard stale CPU state when handling SME traps The logic for handling SME traps manipulates saved FPSIMD/SVE/SME state incorrectly, and a race with preemption can result in a task having TIFSME set and...

5.5CVSS5.3AI score0.00138EPSS
Exploits0References1
NVD
NVD
added 2025/04/08 9:15 a.m.12 views

CVE-2025-22013

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

5.5CVSS0.00172EPSS
Exploits0References6
OSV
OSV
added 2025/04/08 9:15 a.m.0 views

DEBIAN-CVE-2025-22013

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

5.5CVSS5.7AI score0.00172EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/04/02 11:34 a.m.5 views

kernel: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state There are several problems with the way hyp code lazily saves the host's FPSIMD/SVE state, including: Host SVE being discarded unexpectedly due to inconsistent...

5.5CVSS6.8AI score0.00172EPSS
Exploits0References5
NVD
NVD
added 2024/11/19 2:16 a.m.15 views

CVE-2024-50275

In the Linux kernel, the following vulnerability has been resolved: arm64/sve: Discard stale CPU state when handling SVE traps The logic for handling SVE traps manipulates saved FPSIMD/SVE state incorrectly, and a race with preemption can result in a task having TIFSVE set and TIFFOREIGNFPSTATE...

7CVSS0.00237EPSS
Exploits0References6
OSV
OSV
added 2024/11/19 1:30 a.m.21 views

CVE-2024-50275 arm64/sve: Discard stale CPU state when handling SVE traps

In the Linux kernel, the following vulnerability has been resolved: arm64/sve: Discard stale CPU state when handling SVE traps The logic for handling SVE traps manipulates saved FPSIMD/SVE state incorrectly, and a race with preemption can result in a task having TIFSVE set and TIFFOREIGNFPSTATE...

7CVSS6.5AI score0.00237EPSS
Exploits0References9
Cvelist
Cvelist
added 2024/11/19 1:30 a.m.23 views

CVE-2024-50275 arm64/sve: Discard stale CPU state when handling SVE traps

In the Linux kernel, the following vulnerability has been resolved: arm64/sve: Discard stale CPU state when handling SVE traps The logic for handling SVE traps manipulates saved FPSIMD/SVE state incorrectly, and a race with preemption can result in a task having TIFSVE set and TIFFOREIGNFPSTATE...

0.00237EPSS
Exploits0References5
Rows per page
Query Builder