Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.10 views

RHEL 9 : kernel (RHSA-2025:20518)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:20518 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: can: isotp: fix potential CAN...

7.8CVSS7.7AI score0.00535EPSS
Exploits1References233
AlmaLinux
AlmaLinux
added 2025/11/11 12:0 a.m.9 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: can: isotp: fix potential CAN frame reception race in isotprcv CVE-2022-48830 kernel: soc: qcom: cmd-db: Map shared memory as WC, not WB CVE-2024-46689 kernel: Squashfs: sanity check...

7.8CVSS7.3AI score0.00535EPSS
Exploits1References225
Debian CVE
Debian CVE
added 2025/05/01 2:10 p.m.7 views

CVE-2022-49886

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Panic on bad configs that VE on "private" memory access All normal kernel memory is "TDX private memory". This includes everything from kernel stacks to kernel text. Handling exceptions on arbitrary accesses to kernel...

5.5CVSS5.8AI score0.0014EPSS
Exploits0
Redos
Redos
added 2024/11/25 12:0 a.m.15 views

ROS-20241125-02

A vulnerability in the hns3 component of the Linux operating system kernel is related to out-of-bounds read errors in the hns3getcoalinfo function in drivers/net/ethernet/hisilicon/hns3/hns3debugfs.c. Exploitation of the of the vulnerability could allow an attacker to cause a denial of service A...

7.8CVSS6.7AI score0.00253EPSS
Exploits0
Cvelist
Cvelist
added 2024/10/21 12:14 p.m.22 views

CVE-2024-47727 x86/tdx: Fix "in-kernel MMIO" check

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix "in-kernel MMIO" check TDX only supports kernel-initiated MMIO operations. The handlemmio function checks if the VE exception occurred in the kernel and rejects the operation if it did not. However, userspace can...

0.00247EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2024/10/21 12:14 p.m.12 views

CVE-2024-47727

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix "in-kernel MMIO" check TDX only supports kernel-initiated MMIO operations. The handlemmio function checks if the VE exception occurred in the kernel and rejects the operation if it did not. However, userspace can...

7.8CVSS6.2AI score0.00247EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/10/21 12:14 p.m.13 views

CVE-2024-47727 x86/tdx: Fix "in-kernel MMIO" check

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix "in-kernel MMIO" check TDX only supports kernel-initiated MMIO operations. The handlemmio function checks if the VE exception occurred in the kernel and rejects the operation if it did not. However, userspace can...

6.8AI score0.00247EPSS
Exploits0References5
CVE
CVE
added 2024/10/21 12:14 p.m.128 views

CVE-2024-47727

CVE-2024-47727 is a Linux kernel issue (x86/tdx) where userspace could trick the kernel into performing MMIO via #VE by pointing a syscall at an MMIO address. The root cause was the in-kernel MMIO check in handle_mmio() not guaranteeing the target MMIO address was within the kernel before decodin...

7.8CVSS7.1AI score0.00247EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2024/09/18 12:45 p.m.22 views

CVE-2024-46794

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmioread The mmioread function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmioread unintentionally exposes the value of an initialized variable val on the stack...

5.5CVSS6.7AI score0.00199EPSS
Exploits0References4
NVD
NVD
added 2024/09/18 8:15 a.m.26 views

CVE-2024-46794

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmioread The mmioread function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmioread unintentionally exposes the value of an initialized variable val on the stack...

3.3CVSS0.00199EPSS
Exploits0References5
CVE
CVE
added 2024/09/18 7:12 a.m.98 views

CVE-2024-46794

CVE-2024-46794 : In the Linux kernel (x86/tdx), the mmio_read() TDVMCALL could leak the value of an initialized stack variable (val) to the VMM. The fix prevents sending the original value of *val to the VMM. The vulnerability description appears consistently in connected sources (e.g., Astra Lin...

3.3CVSS5.2AI score0.00199EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/05/21 4:15 p.m.2 views

DEBIAN-CVE-2023-52874

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Zero out the missing RSI in TDXHYPERCALL macro In the TDXHYPERCALL asm, after the TDCALL instruction returns from the untrusted VMM, the registers that the TDX guest shares to the VMM need to be cleared to avoid...

5.5CVSS5AI score0.00253EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 3:32 p.m.21 views

CVE-2023-52874 x86/tdx: Zero out the missing RSI in TDX_HYPERCALL macro

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Zero out the missing RSI in TDXHYPERCALL macro In the TDXHYPERCALL asm, after the TDCALL instruction returns from the untrusted VMM, the registers that the TDX guest shares to the VMM need to be cleared to avoid...

5.5CVSS5.9AI score0.00253EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/05/21 3:32 p.m.16 views

CVE-2023-52874 x86/tdx: Zero out the missing RSI in TDX_HYPERCALL macro

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Zero out the missing RSI in TDXHYPERCALL macro In the TDXHYPERCALL asm, after the TDCALL instruction returns from the untrusted VMM, the registers that the TDX guest shares to the VMM need to be cleared to avoid...

6.8AI score0.00253EPSS
Exploits0References3
Rows per page
Query Builder