Lucene search
K

347 matches found

OSV
OSV
added 2026/01/28 3:39 p.m.2 views

SUSE-SU-2026:0329-1 Security update for xen

This update for xen fixes the following issues: - CVE-2025-58150: Fixed buffer overrun with shadow paging and tracing XSA-477 bsc1256745 - CVE-2026-23553: Fixed incomplete IBPB for vCPU isolation XSA-479 bsc1256747...

8.8CVSS6AI score0.00129EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/01/28 3:33 p.m.5 views

CVE-2026-23553 x86: incomplete IBPB for vCPU isolation

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CPU A, running task ...

5.9AI score0.00129EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/01/28 12:26 a.m.18 views

Moderate: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS6.9AI score0.00335EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2026/01/28 12:0 a.m.15 views

RHEL 9 : kernel (RHSA-2026:1441)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:1441 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: iommufd/iovabitm...

7.8CVSS7.1AI score0.00335EPSS
Exploits0References30
OSV
OSV
added 2026/01/27 4:14 p.m.4 views

SUSE-SU-2026:0304-1 Security update for xen

This update for xen fixes the following issues: - CVE-2025-58150: Fixed buffer overrun with shadow paging and tracing XSA-477 bsc1256745 - CVE-2026-23553: Fixed incomplete IBPB for vCPU isolation XSA-479 bsc1256747...

8.8CVSS6AI score0.00129EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.7 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-37849)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37849 advisory. - In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Tear down vGIC on failed vCP...

7.8CVSS6.8AI score0.00234EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/01/21 10:12 a.m.2 views

kernel: KVM: arm64: Tear down vGIC on failed vCPU creation

A use-after-free flaw was found in KVM for arm64 in the Linux Kernel, if the kvmarchvcpucreate fails to share the vCPU page with the hypervisor. This vulnerability could even lead to a kernel information leak problem...

7.8CVSS5.8AI score0.00234EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000638)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000638 advisory. The msrmtrrvalid function in arch/x86/kvm/mtrr.c in the Linux kernel before 4.6.1 supports MSR 0x2f8, which allows guest OS users to read or write to the kvmarchvcpu...

7.1CVSS7.5AI score0.00345EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002720)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002720 advisory. The msrmtrrvalid function in arch/x86/kvm/mtrr.c in the Linux kernel before 4.6.1 supports MSR 0x2f8, which allows guest OS users to read or write to the kvmarchvcpu...

7.1CVSS7.5AI score0.00345EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002618)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002618 advisory. The msrmtrrvalid function in arch/x86/kvm/mtrr.c in the Linux kernel before 4.6.1 supports MSR 0x2f8, which allows guest OS users to read or write to the kvmarchvcpu...

7.1CVSS7.5AI score0.00345EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002039)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002039 advisory. arch/arm/kvm/arm.c in the Linux kernel before 3.10 on the ARM platform, when KVM is used, allows host OS users to cause a denial of service NULL pointer dereference,...

4.3CVSS7.5AI score0.00759EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003265)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003265 advisory. The vcpuscanioapic function in arch/x86/kvm/x86.c in the Linux kernel through 4.19.2 allows local users to cause a denial of service NULL pointer dereference and BUG...

5.5CVSS6.4AI score0.00477EPSS
Exploits0References15
ATTACKERKB
ATTACKERKB
added 2026/01/14 3:5 p.m.2 views

CVE-2025-71104

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix VM hard lockup after prolonged inactivity with periodic HV timer When advancing the target expiration for the guest's APIC timer in periodic mode, set the expiration to "now" if the target expiration is in the past...

5.3AI score0.00095EPSS
Exploits0References8Affected Software1
Redos
Redos
added 2026/01/13 12:0 a.m.5 views

ROS-20260113-7314

A vulnerability in the kvmarchvcpuioctl function of the arch/x86/kvm/x86.c module of the Linux operating system kernel is related to synchronization errors when using a shared resource. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability o...

7.8CVSS6.6AI score0.00247EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.6 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992348)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992348 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0 Don't BUG/WARN on interrupt...

5.5CVSS6.5AI score0.00219EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/12/09 5:27 p.m.5 views

CVE-2025-48623

In initpkvmhypvcpu of pkvm.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.9AI score0.00093EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/08 6:30 p.m.5 views

EUVD-2025-201745

In initpkvmhypvcpu of pkvm.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.4AI score0.00093EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/08 4:57 p.m.20 views

CVE-2025-48623

In initpkvmhypvcpu of pkvm.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00093EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.10 views

TencentOS Server 4: kernel (TSSA-2025:0430)

"The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0430 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilitie...

8.8CVSS6.2AI score0.23278EPSS
Exploits1References99
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.4 views

kernel: KVM: x86: Load DR6 with guest value only before entering .vcpu_run() loop

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Load DR6 with guest value only before entering .vcpurun loop Move the conditional loading of hardware DR6 with the guest's DR6 value out of the core .vcpurun loop to fix a bug where KVM can load hardware with a stale...

5.5CVSS6.7AI score0.00206EPSS
Exploits0References5
Rows per page
Query Builder