Lucene search
K

346 matches found

OSV
OSV
added 2024/07/12 1:15 p.m.0 views

DEBIAN-CVE-2024-40953

In the Linux kernel, the following vulnerability has been resolved: KVM: Fix a data race on lastboostedvcpu in kvmvcpuonspin Use READ,WRITEONCE to access kvm-lastboostedvcpu to ensure the loads and stores are atomic. In the extremely unlikely scenario the compiler tears the stores, it's...

4.7CVSS5.6AI score0.0019EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/07/12 1:15 p.m.15 views

CVE-2024-40953

In the Linux kernel, the following vulnerability has been resolved: KVM: Fix a data race on lastboostedvcpu in kvmvcpuonspin Use READ,WRITEONCE to access kvm-lastboostedvcpu to ensure the loads and stores are atomic. In the extremely unlikely scenario the compiler tears the stores, it's...

4.7CVSS6.4AI score0.0019EPSS
Exploits0References38
CNNVD
CNNVD
added 2024/07/12 12:0 a.m.2 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel that stems from a data contention issue in the kvmvcpuonspin function of the KVM virtualization component...

4.7CVSS6.5AI score0.0019EPSS
Exploits0References6
OSV
OSV
added 2024/06/20 12:15 p.m.4 views

UBUNTU-CVE-2022-48763

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Forcibly leave nested virt when SMM state is toggled Forcibly leave nested virtualization operation if userspace toggles SMM state via KVMSETVCPUEVENTS or KVMSYNCX86EVENTS. If userspace forces the vCPU out of SMM while...

5.5CVSS5.8AI score0.00219EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/06/05 12:0 a.m.6 views

PT-2024-29195

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the KVM Kernel-based Virtual Machine on arm64 architecture, where a dangling pointer to a redistributor region could be stored in a vcpu when tearing down the...

7.8CVSS5.5AI score0.00296EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/06/03 2:33 p.m.23 views

CVE-2024-36953

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgicv2parseattr vgicv2parseattr is responsible for finding the vCPU that matches the user-provided CPUID, which of course may not be valid. If the ID is invalid, kvmgetvcpubyid...

4.4CVSS6.5AI score0.00231EPSS
Exploits0References4
OSV
OSV
added 2024/05/30 4:15 p.m.3 views

DEBIAN-CVE-2024-36953

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgicv2parseattr vgicv2parseattr is responsible for finding the vCPU that matches the user-provided CPUID, which of course may not be valid. If the ID is invalid, kvmgetvcpubyid...

5.5CVSS5.2AI score0.00231EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/05/30 4:15 p.m.34 views

CVE-2024-36953

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgicv2parseattr vgicv2parseattr is responsible for finding the vCPU that matches the user-provided CPUID, which of course may not be valid. If the ID is invalid, kvmgetvcpubyid...

5.5CVSS6.3AI score0.00231EPSS
Exploits0References30
OSV
OSV
added 2024/05/30 4:15 p.m.0 views

UBUNTU-CVE-2024-36953

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgicv2parseattr vgicv2parseattr is responsible for finding the vCPU that matches the user-provided CPUID, which of course may not be valid. If the ID is invalid, kvmgetvcpubyid...

5.5CVSS6.1AI score0.00231EPSS
Exploits0References31
Vulnrichment
Vulnrichment
added 2024/05/30 3:35 p.m.20 views

CVE-2024-36953 KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgicv2parseattr vgicv2parseattr is responsible for finding the vCPU that matches the user-provided CPUID, which of course may not be valid. If the ID is invalid, kvmgetvcpubyid...

6.8AI score0.00231EPSS
Exploits0References6
CVE
CVE
added 2024/05/30 3:35 p.m.181 views

CVE-2024-36953

CVE-2024-36953 affects the Linux kernel KVM for arm64 with vgic-v2. The issue: vgic_v2_parse_attr() searches for a vCPU matching the CPUID and may receive a NULL from kvm_get_vcpu_by_id() if the ID is invalid. Unlike the safe GICv3 flow, the code did not verify the returned vCPU object. Affected ...

5.5CVSS7.1AI score0.00231EPSS
Exploits0References7Affected Software1
SUSE CVE
SUSE CVE
added 2024/05/23 3:4 a.m.2 views

SUSE CVE-2021-47296

In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Fix kvmarchvcpuioctl vcpuload leak vcpuput is not called if the user copy fails. This can result in preempt notifier corruption and crashes, among other issues...

4.7CVSS6.6AI score0.00225EPSS
Exploits0References7
OSV
OSV
added 2024/05/21 3:15 p.m.2 views

DEBIAN-CVE-2021-47390

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix stack-out-of-bounds memory access from ioapicwriteindirect KASAN reports the following issue: BUG: KASAN: stack-out-of-bounds in kvmmakevcpusrequestmask+0x174/0x440 kvm Read of size 8 at addr ffffc9001364f638 by tas...

7.1CVSS5.7AI score0.00259EPSS
Exploits0References1
Prion
Prion
added 2024/05/21 3:15 p.m.8 views

CVE-2021-47390

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix stack-out-of-bounds memory access from ioapicwriteindirect KASAN reports the following issue: BUG: KASAN: stack-out-of-bounds in kvmmakevcpusrequestmask+0x174/0x440 kvm Read of size 8 at addr ffffc9001364f638 by tas...

7.1CVSS0.00259EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/05/21 3:15 p.m.16 views

CVE-2021-47296

In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Fix kvmarchvcpuioctl vcpuload leak vcpuput is not called if the user copy fails. This can result in preempt notifier corruption and crashes, among other issues...

5.5CVSS5.9AI score0.00225EPSS
Exploits0References7
OSV
OSV
added 2024/05/21 3:15 p.m.1 views

UBUNTU-CVE-2021-47296

In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Fix kvmarchvcpuioctl vcpuload leak vcpuput is not called if the user copy fails. This can result in preempt notifier corruption and crashes, among other issues...

5.5CVSS5.8AI score0.00225EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/05/21 2:35 p.m.29 views

CVE-2021-47296 KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak

In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Fix kvmarchvcpuioctl vcpuload leak vcpuput is not called if the user copy fails. This can result in preempt notifier corruption and crashes, among other issues...

6.6AI score0.00225EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the kvmarchvcpuioctl vcpuload leak...

5.5CVSS6.4AI score0.00225EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.1 views

SUSE CVE-2024-26976

In the Linux kernel, the following vulnerability has been resolved: KVM: Always flush async PF workqueue when vCPU is being destroyed Always flush the per-vCPU async PF workqueue when a vCPU is clearing its completion queue, e.g. when a VM and all its vCPUs is being destroyed. KVM must ensure tha...

5.5CVSS6.3AI score0.00259EPSS
Exploits0References17
RedhatCVE
RedhatCVE
added 2024/05/01 8:23 p.m.34 views

CVE-2024-26976

In the Linux kernel, the following vulnerability has been resolved: KVM: Always flush async PF workqueue when vCPU is being destroyed Always flush the per-vCPU async PF workqueue when a vCPU is clearing its completion queue, e.g. when a VM and all its vCPUs is being destroyed. KVM must ensure tha...

5.5CVSS7AI score0.00259EPSS
Exploits0References4
Rows per page
Query Builder