Lucene search
K

43 matches found

RedHat Linux
RedHat Linux
added 2025/11/10 1:5 a.m.5 views

kernel: x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.7AI score0.00331EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-989923)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989923 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB...

5.5CVSS6.2AI score0.00276EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989453)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989453 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB...

5.5CVSS6.2AI score0.00276EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-28976

Malicious code in bioql PyPI...

6.5AI score0.00331EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2025/09/14 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-40300

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits...

5.5CVSS6.4AI score0.00331EPSS
Exploits0References3
OSV
OSV
added 2025/09/11 5:15 p.m.14 views

AZL-67238 CVE-2025-40300 affecting package kernel for versions less than 6.6.112.1-1

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS6AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 5:15 p.m.1 views

DEBIAN-CVE-2025-40300

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.9AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 5:15 p.m.12 views

UBUNTU-CVE-2025-40300

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

5.5CVSS5.7AI score0.00331EPSS
Exploits0References42
Cvelist
Cvelist
added 2025/09/11 4:49 p.m.11 views

CVE-2025-40300 x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

0.00331EPSS
Exploits0References13
Vulnrichment
Vulnrichment
added 2025/09/11 4:49 p.m.6 views

CVE-2025-40300 x86/vmscape: Add conditional IBPB mitigation

In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...

6.5AI score0.00331EPSS
Exploits0References13
Cvelist
Cvelist
added 2025/02/26 2:23 a.m.11 views

CVE-2022-49611 x86/speculation: Fill RSB on vmexit for IBRS

In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB. While at it, add a bunch of comments to attempt to document the current state of tribal knowledge about RSB attacks and what exactly i...

0.00276EPSS
Exploits0References7
OSV
OSV
added 2024/02/28 9:15 a.m.3 views

DEBIAN-CVE-2021-46978

In the Linux kernel, the following vulnerability has been resolved: KVM: nVMX: Always make an attempt to map eVMCS after migration When enlightened VMCS is in use and nested state is migrated with vmxgetnestedstate/vmxsetnestedstate KVM can't map evmcs page right away: evmcs gpa is not 'struct...

7.8CVSS5.8AI score0.00241EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2023/09/19 7:0 a.m.4 views

Sev-es / sev-snp vmgexit double fetch vulnerability

...

5.6CVSS7AI score0.00159EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.3 views

SUSE CVE-2018-12904

In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial of service attacks due to lack of checking of CPL...

8.8CVSS7.3AI score0.01182EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2022/12/13 4:9 p.m.7 views

kernel: x86/speculation: Fill RSB on vmexit for IBRS

In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB. While at it, add a bunch of comments to attempt to document the current state of tribal knowledge about RSB attacks and what exactly i...

5.5CVSS6.3AI score0.00276EPSS
Exploits0References5
Xen Project
Xen Project
added 2022/11/08 6:0 p.m.69 views

x86: Multiple speculative security issues

ISSUE DESCRIPTION 1 Researchers have discovered that on some AMD CPUs, the implementation of IBPB Indirect Branch Prediction Barrier does not behave according to the specification. Specifically, IBPB fails to properly flush the RAS Return Address Stack, also RSB - Return Stack Buffer - in Intel...

6.5CVSS6.9AI score0.00785EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2022/11/08 9:32 a.m.3 views

kernel: x86/speculation: Fill RSB on vmexit for IBRS

In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB. While at it, add a bunch of comments to attempt to document the current state of tribal knowledge about RSB attacks and what exactly i...

5.5CVSS6.3AI score0.00276EPSS
Exploits0References5
OSV
OSV
added 2022/07/31 1:46 p.m.11 views

GSD-2022-1004150 x86/speculation: Fill RSB on vmexit for IBRS

x86/speculation: Fill RSB on vmexit for IBRS This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.14 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2021/12/20 12:0 a.m.4 views

PT-2021-8125 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The vulnerability is related to the KVM component of the Linux kernel. It is caused by the incorrect handling of the vmx-fail flag when the vCPU is in L2 and emulation required is true...

5.5CVSS6.5AI score0.00288EPSS
Exploits1References17
RedHat Linux
RedHat Linux
added 2019/04/23 2:52 p.m.7 views

Kernel: KVM: nVMX: use-after-free of the hrtimer for emulation of the preemption timer

A use-after-free vulnerability was found in the way the Linux kernel's KVM hypervisor emulates a preemption timer for L2 guests when nested =1 virtualization is enabled. This high resolution timerhrtimer runs when a L2 guest is active. After VM exit, the syncvmcs12 timer object is stopped. The...

7.8CVSS7.1AI score0.00805EPSS
Exploits1References4
Rows per page
Query Builder