Lucene search
K

52 matches found

EUVD
EUVD
added 2026/06/25 7:59 p.m.6 views

EUVD-2026-39553

ML-KEM-1024 x64 AVX2 implicit rejection failure in the Fujisaki-Okamoto transform breaks IND-CCA2 security, allowing decapsulation to deviate from the implicit-rejection behavior required by the standard. The AVX2 constant-time ciphertext comparison used during decapsulation never compared the...

6.3CVSS5.9AI score0.00161EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/06/25 7:59 p.m.9 views

CVE-2026-10097

wolfSSL's AVX2-optimized ML-KEM implementation mlkemcmpavx2 compares only 1536 of the 1568 ciphertext bytes during the Fujisaki-Okamoto re-encryption check in ML-KEM-1024 decapsulation. Ciphertexts that differ from the expected re-encryption solely in bytes 1536-1567 bypass implicit rejection and...

8.3CVSS5.8AI score0.00161EPSS
Exploits0References2
OSV
OSV
added 2026/05/19 4:18 p.m.18 views

GHSA-FHVH-VW7H-9XF3 libcrux-ml-dsa: Signature Verification on AVX2 Platforms Mishandles Edge Case

The AVX2 implementation of ML-DSA verification incorrectly implemented the usehint function, mishandling an edge case that should lead to signature rejection. Impact An attacker could make the ML-DSA verifier accept a crafted invalid signature under a maliciously generated verification key, if th...

8.2CVSS5.8AI score
Exploits0References5
EUVD
EUVD
added 2026/05/08 9:31 a.m.15 views

EUVD-2026-28534

A vulnerability in Legion of the Bouncy Castle Inc. BC-FJA BC-FIPS on Linux, X8664, AVX, AVX-512f. This vulnerability is associated with program files gcm128w, gcm512w. This issue affects BC-FJA: from 2.1.0 through 2.1.2...

5.1CVSS5.8AI score0.00158EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/08 9:31 a.m.12 views

Bouncy Castle LTS native GCM chunking can cause bad-tag exception on decryption

In Bouncy Castle LTS for Java, the AES/GCM native implementation used on Intel CPUs with AES PAA instruction sets AVX / VAES / VAESF variants can intermittently produce an incorrect authentication tag verification result during decryption when the ciphertext is fed in via a mix of update calls...

5.1CVSS6AI score0.00158EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/06 7:40 a.m.6 views

CVE-2026-43114

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetpipapoavx2: don't return non-matching entry on expiry New test case fails unexpectedly when avx2 matching functions are used. The test first loads a ranomly generated pipapo set with 'ipv4 . port' key, i.e. nft -...

5.8AI score0.00356EPSS
Exploits0References6Affected Software1
RustSec
RustSec
added 2026/05/05 12:0 p.m.11 views

Signature Verification on AVX2 Platforms Mishandles Edge Case

The AVX2 implementation of ML-DSA verification incorrectly implemented the usehint function, mishandling an edge case that should lead to signature rejection. Impact An attacker could make the ML-DSA verifier accept a crafted invalid signature under a maliciously generated verification key, if th...

5.8AI score
Exploits0Affected Software1
Snyk
Snyk
added 2026/04/07 11:9 p.m.4 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the AES-CFB-128 process on x86-64 systems with AVX-512 and VAES support when processing partial cipher blocks. An attacker can cause a crash and application termination by providing input buffers that end at a memo...

9.1CVSS6AI score0.00313EPSS
Exploits0References2
OSV
OSV
added 2026/01/27 12:48 a.m.8 views

GHSA-VC8C-J3XM-XJ73 Wasmtime segfault or unused out-of-sandbox load with f64.copysign operator on x86-64

On x86-64 platforms with AVX Wasmtime's compilation of the f64.copysign WebAssembly instruction with Cranelift may load 8 more bytes than is necessary. When signals-based-traps are disabled this can result in a uncaught segfault due to loading from unmapped guard pages. With guard pages disabled...

4.1CVSS5.9AI score0.00214EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.8 views

WasmTime buffer error vulnerability

Wasmtime is a lightweight WebAssembly runtime open source by the Bytecode Alliance. Versions of Wastime prior to 29.0.0, 36.0.5, 40.0.3, and 41.0.1 contained a buffer error vulnerability. This vulnerability arises due to Cranelift’s compilation of f64.copysign WebAssembly instructions on x86-64...

5.5CVSS6AI score0.00214EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

Siemens SIMATIC S7-1500 (CVE-2023-4807)

Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platform when running on newer X8664 processors supporting the AVX512-IFMA instructions. Impact summary: If in an application that uses...

7.8CVSS6.9AI score0.00862EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/09/23 12:0 a.m.7 views

PT-2025-39124

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s netfilter module, specifically within the nft set pipapo function. A commit introduced a null dereference issue when handling empty sets, breaking the...

6.2AI score
Exploits0References6
Debian CVE
Debian CVE
added 2025/09/15 12:36 p.m.12 views

CVE-2025-39804

In the Linux kernel, the following vulnerability has been resolved: lib/crypto: arm64/poly1305: Fix register corruption in no-SIMD contexts Restore the SIMD usability check that was removed by commit a59e5468a921 "crypto: arm64/poly1305 - Add block-only interface". This safety check is cheap and ...

7.8CVSS6.3AI score0.00133EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/09/04 11:24 p.m.6 views

SUSE CVE-2025-38689

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Fix NULL dereference in avx512status Problem ------- With CONFIGX86DEBUGFPU enabled, reading /proc/kthread/archstatus causes a warning and a NULL pointer dereference. This is because the AVX-512 timestamp code uses...

5.5CVSS6.5AI score0.00128EPSS
Exploits0References3
OSV
OSV
added 2025/09/04 3:32 p.m.7 views

CVE-2025-38689 x86/fpu: Fix NULL dereference in avx512_status()

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Fix NULL dereference in avx512status Problem ------- With CONFIGX86DEBUGFPU enabled, reading /proc/kthread/archstatus causes a warning and a NULL pointer dereference. This is because the AVX-512 timestamp code uses...

5.5CVSS6.3AI score0.00128EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/09/04 3:32 p.m.12 views

CVE-2025-38689 x86/fpu: Fix NULL dereference in avx512_status()

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Fix NULL dereference in avx512status Problem ------- With CONFIGX86DEBUGFPU enabled, reading /proc/kthread/archstatus causes a warning and a NULL pointer dereference. This is because the AVX-512 timestamp code uses...

0.00128EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/09/01 12:0 a.m.6 views

AVX-Based Timing Side Channel — ASLR Detection

This work demonstrates a technique for detecting ASLR using AVX memory load instructions combined with RDTSCP timing and SIGSEGV detection. It illustrates how side-channel timing measurements can be applied to analyze memory layout randomization...

6.9AI score
Exploits0
CNNVD
CNNVD
added 2024/11/19 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a problematic stale CPU state when handling SVE traps...

7CVSS6.7AI score0.00237EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/10/18 4:21 p.m.5 views

OpenJDK: memory corruption issue on x86_64 with AVX-512 (8317121)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition, product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u381-perf, 17.0.8, 21; Oracle GraalVM for JDK: 17.0.8, 21; Oracle GraalVM Enterprise Edition:...

3.7CVSS7.4AI score0.00883EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:36 a.m.5 views

SUSE CVE-2021-45696

An issue was discovered in the sha2 crate 0.9.7 before 0.9.8 for Rust. Hashes of long messages may be incorrect when the AVX2-accelerated backend is used...

9.8CVSS7AI score0.00805EPSS
Exploits0References3
Rows per page
Query Builder