Lucene search
K

14 matches found

Cvelist
Cvelist
added 2026/06/24 12:49 a.m.31 views

CVE-2026-12681

Improper Validation of Specified Index, Position, or Offset in Input vulnerability in Google go-attestation. parseEfiSignatureList does not advance the buffer past vendor bytes before reading entries. For hashSHA256SigGUID lists, this allows attacker-controlled vendor header bytes to be appended ...

8.9CVSS0.00191EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for the event log to avoid corruption. The TPM event log table is a Linux-specific construct. The data produced by the GetEventLog boot service is cached in memory and then passed to the OS...

5.5CVSS6.2AI score0.00213EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: tpm: Changed to kvalloc in eventlog/acpi.c The following failure was reported on HPE ProLiant D320: 10.693310 T1 tpmtis STM0925:00: 2.0 TPM device-id 0x3, rev-id 0 10.848132 T1 ------------ Cut here ------------ 10.853559 T1...

5.5CVSS6.3AI score0.00222EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.10 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992796)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992796 advisory. In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is...

5.5CVSS6.3AI score0.00213EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.7 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990850)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990850 advisory. In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is...

5.5CVSS6.3AI score0.00213EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.7 views

The vulnerability of the efi_retrieve_tpm2_eventlog() function (drivers/firmware/efi/libstub/tpm.c) in the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the efiretrievetpm2eventlog function located in drivers/firmware/efi/libstub/tpm.c in the Linux kernel is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to trigger a system failure...

5.5CVSS7AI score0.00213EPSS
Exploits0References17Affected Software7
SUSE CVE
SUSE CVE
added 2024/10/21 3:45 p.m.7 views

SUSE CVE-2024-49858

In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...

6.1CVSS6.7AI score0.00213EPSS
Exploits0References20
OSV
OSV
added 2024/10/21 1:15 p.m.2 views

DEBIAN-CVE-2024-49858

In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...

5.5CVSS5.8AI score0.00213EPSS
Exploits0References1
NVD
NVD
added 2024/10/21 1:15 p.m.7 views

CVE-2024-49858

In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...

5.5CVSS0.00213EPSS
Exploits0References9
OSV
OSV
added 2024/10/21 1:15 p.m.13 views

AZL-50957 CVE-2024-49858 affecting package kernel for versions less than 6.6.56.1-5

In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...

5.5CVSS6.7AI score0.00213EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 1:15 p.m.15 views

AZL-50773 CVE-2024-49858 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...

5.5CVSS6.7AI score0.00213EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 1:15 p.m.2 views

UBUNTU-CVE-2024-49858

In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...

5.5CVSS6.2AI score0.00213EPSS
Exploits0References32
CVE
CVE
added 2024/10/21 12:27 p.m.146 views

CVE-2024-49858

CVE-2024-49858: Linux kernel TPM event log handling (efistub/tpm) used EFI_LOADER_DATA, leaving the region unreserved in the EFI 64-bit memory map (via E820) and passed to the kernel via kexec, risking memory corruption. The fix substitutes EFI_ACPI_RECLAIM_MEMORY, which EFI/ACPI treats as reserv...

5.5CVSS7.1AI score0.00213EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2024/10/21 12:27 p.m.16 views

CVE-2024-49858 efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption

In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...

5.5CVSS6.3AI score0.00213EPSS
Exploits0References12
Rows per page
Query Builder