PT-2026-5819

Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the LIST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000923)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000923 advisory. The accesspmuevcntr function in arch/arm64/kvm/sysregs.c in the Linux kernel before 4.8.11 allows privileged KVM guest OS users to cause a denial of service assertio...

The vulnerability in the `arch/arm64/kvm/sys regs.c` component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the arch/arm64/kvm/sys regs.c component of the Linux operating system is related to reading data from buffer fields beyond their allowable limits. Exploiting this vulnerability can allow an attacker to cause a service failure...

SUSE CVE-2018-3640

Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read RSRE, Variant 3a...

The vulnerabilities of Intel and ARM processors, related to the use of speculative read operations on system registers, allow attackers to exploit these vulnerabilities to disclose protected information.

The vulnerabilities of Intel and ARM processors are related to the use of speculative read operations for system registers. Exploiting these vulnerabilities can allow attackers to disclose system parameters through a specially crafted application...

CVE-2018-3640

Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read RSRE, Variant 3a...

CVE-2018-3640

An industry-wide issue was found in the way many modern microprocessor handle speculative access of system registers inaccessible to unprivileged user. It relies on the presence of a precisely-defined instruction sequence in the privileged code which allows speculative load of system registers an...

CPU hardware utilizing speculative execution may be vulnerable to cache side-channel attacks

Overview CPU hardware utilizing speculative execution may be vulnerable to cache timing side-channel analysis. Two vulnerabilities are identified, known as "Variant 3a" and "Variant 4". Description Speculative execution is a technique used by many modern processors to improve performance by...

BSA-2018-612

Security Advisory ID : BSA-2018-612 Component : HW:CPU Revision : 1.0: Final Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may return a speculative register value that is then used in subsequent speculative load instructions...

DEBIAN-CVE-2017-12168

The accesspmuevcntr function in arch/arm64/kvm/sysregs.c in the Linux kernel before 4.8.11 allows privileged KVM guest OS users to cause a denial of service assertion failure and host OS crash by accessing the Performance Monitors Cycle Count Register PMCCNTR...

kernel: kvm: insufficient sysenter emulation when invoked from 16-bit code

It was found that the Linux kernel KVM subsystem's sysenter instruction emulation was not sufficient. An unprivileged guest user could use this flaw to escalate their privileges by tricking the hypervisor to emulate a SYSENTER instruction in 16-bit mode, if the guest OS did not initialize the...