362 matches found
Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2026-1494)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1494 advisory. In the Linux kernel, the following vulnerability has been resolved: pagepool: Fix use-after-free in pagepoolrecycleinring CVE-2025-38129 In the Linux kernel, the following vulnerability has be...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: pagepool: Fix use-after-free in pagepoolrecycleinring CVE-2025-38129 In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix a null-ptr access in the cursor snooper CVE-2025-40110 In th...
402bot (>=0.1.0 <=0.4.0), @0xkinance/x402-anthropic (=0.1.0) +165 more potentially affected by unknown CVE via @x402/svm (>=2.0.0 <=2.5.0)
@x402/svm NPM version =2.0.0, =0.1.0, =0.1.0, =0.3.0, =0.3.0, =0.1.0-alpha.26, =0.1.0-rc.4, =0.1.0, =0.0.0-pr-246-20260515203519, =0.0.1, =0.0.2 - @agenticpay/mcp-server =0.0.1 and more Source cves: unknown CVE Source advisory: OSV:GHSA-QR2G-P6Q7-W82M...
Improper Authentication
Overview @x402/svm is a x402 Payment Protocol SVM Implementation Affected versions of this package are vulnerable to Improper Authentication in facilitator payment processing on Solana. An attacker can interfere with or manipulate payment transactions by exploiting a race condition. Remediation...
SUSE-SU-2026:20496-1 Security update for the Linux Kernel
The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. - CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow ...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004958)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004958 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/sched: Increment job count before swapping tail spsc queue A small race exists between...
EUVD-2022-54676
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak For some sev ioctl interfaces, the length parameter that is passed maybe less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmwar...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004257)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004257 advisory. An issue was discovered in the Linux kernel before 5.6. svmcpuuninit in arch/x86/kvm/svm.c has a memory leak, aka CID-d80b64ff297e. NOTE: third parties dispute this...
CVE-2021-33639
REMAP cmd of SVM driver can be used to remap read only memory as read-write, then cause read only memory/file modified...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000431)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000431 advisory. An issue was discovered in the Linux kernel before 5.6. svmcpuuninit in arch/x86/kvm/svm.c has a memory leak, aka CID-d80b64ff297e. NOTE: third parties dispute this...
CVE-2023-54296
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost migration Fix a goof where KVM tries to grab source vCPUs from the destination VM when doing intrahost migration. Grabbing the wrong vCPU not only hoses the guest, it...
CVE-2023-54296
CVE-2023-54296 concerns the Linux kernel KVM/SMV intrahost migration path. The issue fixed a bug where KVM would grab source vCPUs from the destination VM during intrahost migration, which could cause the guest to fail and the host to crash because the VMSA pointer could be left NULL. The descrip...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992348)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992348 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0 Don't BUG/WARN on interrupt...
SUSE-SU-2025:4517-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP7 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. - CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in...
AZL-72497 CVE-2025-68259 affecting package kernel for versions less than 6.6.121.1-1
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced When re-injecting a soft interrupt from an INT3, INT0, or select INTn instruction, discard the exception and retry the instruction if the code stream is changed...
CVE-2025-68259
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced When re-injecting a soft interrupt from an INT3, INT0, or select INTn instruction, discard the exception and retry the instruction if the code stream is changed...
CVE-2025-68259 KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced When re-injecting a soft interrupt from an INT3, INT0, or select INTn instruction, discard the exception and retry the instruction if the code stream is changed...
RHEL 8 : kernel (RHSA-2025:21667)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:21667 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nfsd: don't ignore the return...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989694)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989694 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: fix panic on out-of-bounds guest IRQ As guestirq is coming from KVMIRQFD API call, it m...