Lucene search
K

21 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a potential UAF scenario in the case of an LPI translation cache hit racing with an operation that invalidates the cache, such as a DISCARD ITS command...

7.8CVSS5.9AI score0.0024EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/10 2:25 a.m.17 views

SUSE CVE-2026-46316

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgicitsinvalidatecache walks the per-ITS translation cache with xaforeach and drops the cache's reference on each entry with vgicputirq. It puts...

7.8CVSS5.4AI score0.00203EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/06/09 5:0 p.m.10 views

CVE-2026-46316

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM for ARM64, specifically within the vgic-its component. This vulnerability occurs when multiple concurrent operations incorrectly drop the translation cache's reference to an entry more than once during cache invalidation. Thi...

9.3CVSS5.4AI score0.00203EPSS
Exploits0References6
NVD
NVD
added 2026/06/09 1:16 p.m.16 views

CVE-2026-46316

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgicitsinvalidatecache walks the per-ITS translation cache with xaforeach and drops the cache's reference on each entry with vgicputirq. It puts...

9.3CVSS0.00203EPSS
Exploits0References7
OSV
OSV
added 2026/06/09 1:16 p.m.11 views

UBUNTU-CVE-2026-46316

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgicitsinvalidatecache walks the per-ITS translation cache with xaforeach and drops the cache's reference on each entry with vgicputirq. It puts...

9.3CVSS5.2AI score0.00203EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/09 11:52 a.m.33 views

CVE-2026-46316 KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgicitsinvalidatecache walks the per-ITS translation cache with xaforeach and drops the cache's reference on each entry with vgicputirq. It puts...

9.3CVSS0.00203EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/09 11:52 a.m.21 views

EUVD-2026-35405

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgicitsinvalidatecache walks the per-ITS translation cache with xaforeach and drops the cache's reference on each entry with vgicputirq. It puts...

5.4AI score0.00203EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-46316

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgicitsinvalidatecache walks the per-ITS translation cache with xaforeach a...

9.3CVSS5.9AI score0.00203EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.18 views

PT-2026-47753

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 13031fb6b835 Description A race condition exists in the vGIC-ITS Interrupt Translation Service emulation within KVM on arm64 systems. The issue occurs in the vgic its invalidate cache function, which iterates...

9.3CVSS6AI score0.00203EPSS
Exploits0References243
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.65 views

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2024-1800)

"According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a...

8CVSS7AI score0.28058EPSS
Exploits17References46
OpenVAS
OpenVAS
added 2024/05/30 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1735)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS7.7AI score0.28058EPSS
Exploits17References4
BDU FSTEC
BDU FSTEC
added 2024/03/11 12:0 a.m.4 views

The vulnerability of the vgic_its_check_cache() function in the arch/arm64/kvm/vgic/vgic-its.c module of the Kernel-based Virtual Machine (KVM) virtualization subsystem of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the vgicitscheckcache function in the arch/arm64/kvm/vgic/vgic-its.c module of the Kernel-based Virtual Machine KVM virtualization subsystem of the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker ...

7.8CVSS6.7AI score0.0024EPSS
Exploits0References29Affected Software5
SUSE CVE
SUSE CVE
added 2024/02/27 3:54 a.m.2 views

SUSE CVE-2024-26598

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a potential UAF scenario in the case of an LPI translation cache hit racing with an operation that invalidates the cache, such as a DISCARD ITS command...

7.8CVSS5.8AI score0.0024EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2024/02/24 11:43 a.m.29 views

CVE-2024-26598

A flaw was found in the Linux kernel pertaining to a potential use-after-free UAF scenario in a system involving Logical Partitioning Interrupts LPI translation cache operations. Specifically, the issue arises when a cache hit occurs concurrently with an operation that invalidates the cache, such...

7.8CVSS7.3AI score0.0024EPSS
Exploits0References4
NVD
NVD
added 2024/02/23 3:15 p.m.17 views

CVE-2024-26598

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a potential UAF scenario in the case of an LPI translation cache hit racing with an operation that invalidates the cache, such as a DISCARD ITS command...

7.8CVSS7.4AI score0.0024EPSS
Exploits0References8
OSV
OSV
added 2024/02/23 3:15 p.m.2 views

DEBIAN-CVE-2024-26598

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a potential UAF scenario in the case of an LPI translation cache hit racing with an operation that invalidates the cache, such as a DISCARD ITS command...

7.8CVSS5.8AI score0.0024EPSS
Exploits0References1
Prion
Prion
added 2024/02/23 3:15 p.m.23 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a potential UAF scenario in the case of an LPI translation cache hit racing with an operation that invalidates the cache, such as a DISCARD ITS command...

7.4AI score0.0024EPSS
Exploits0References7
OSV
OSV
added 2024/02/23 3:15 p.m.6 views

UBUNTU-CVE-2024-26598

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a potential UAF scenario in the case of an LPI translation cache hit racing with an operation that invalidates the cache, such as a DISCARD ITS command...

7.8CVSS6.3AI score0.0024EPSS
Exploits0References22
CVE
CVE
added 2024/02/23 2:46 p.m.1409 views

CVE-2024-26598

CVE-2024-26598 is a Linux kernel vulnerability affecting KVM on arm64 with vgic-its. The issue is a use-after-free risk in the LPI translation cache: vgic_its_check_cache() drops a lock that serializes refcount changes without first elevating the vgic_irq refcount. If a translation cache hit race...

7.8CVSS7.6AI score0.0024EPSS
Exploits0References8Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/23 2:46 p.m.29 views

CVE-2024-26598 KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache There is a potential UAF scenario in the case of an LPI translation cache hit racing with an operation that invalidates the cache, such as a DISCARD ITS command...

6.8AI score0.0024EPSS
Exploits0References7
Rows per page
Query Builder