Lucene search
K

28 matches found

Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.5 views

PT-2025-53127

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak issue was identified and resolved in the x86/xen component of the Linux kernel within the xen init lock cpu function. Specifically, if the bind ipi to irqhandler function...

7.8CVSS6.2AI score0.00465EPSS
Exploits2References895
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989449)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989449 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/xen: don't do PV iret hypercall through hypercall page Instead of jumping to the Xen hypercal...

5.5CVSS6.2AI score0.00304EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989540)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989540 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/xen: Drop USERGSSYSRET64 paravirt call commit afd30525a659ac0ae0904f0cb4a2ca75522c3123...

8.8CVSS6.1AI score0.00227EPSS
Exploits0References4
CVE
CVE
added 2025/10/04 3:43 p.m.10 views

CVE-2022-50495

CVE-2022-50495 is rejected/not used; this entry does not represent an active vulnerability.

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/10/04 12:0 a.m.4 views

PT-2025-40729

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak issue was identified and resolved in the Linux kernel’s x86/xen component within the xen smp intr init pv function. Specifically, local variables save newly allocated strin...

6.2AI score
Exploits0References9
Debian CVE
Debian CVE
added 2025/05/01 2:9 p.m.9 views

CVE-2022-49774

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/xen: Fix eventfd error handling in kvmxeneventfdassign Should not call eventfdctxput in case of error. Introduce new goto target instead. - Paolo...

5.5CVSS5.5AI score0.0014EPSS
Exploits0
Cvelist
Cvelist
added 2025/02/27 8:4 p.m.9 views

CVE-2025-21818

...

Exploits0
OSV
OSV
added 2024/12/24 9:24 a.m.12 views

CVE-2024-53241 x86/xen: don't do PV iret hypercall through hypercall page

In the Linux kernel, the following vulnerability has been resolved: x86/xen: don't do PV iret hypercall through hypercall page Instead of jumping to the Xen hypercall page for doing the iret hypercall, directly code the required sequence in xen-asm.S. This is done in preparation of no longer usin...

5.5CVSS6.3AI score0.00304EPSS
Exploits0References16
CVE
CVE
added 2024/12/24 9:24 a.m.2569 views

CVE-2024-53241

CVE-2024-53241 affects the Linux kernel when running with Xen PV guests. The root cause is an unsafe PV iret hypercall path via the Xen hypercall page. The fix replaces the hypercall-page jump with an inlined sequence in xen-asm.S to stop using the hypercall page, preparing for its removal due to...

5.5CVSS7.2AI score0.00304EPSS
Exploits0References13Affected Software1
SUSE CVE
SUSE CVE
added 2024/12/18 3:48 a.m.8 views

SUSE CVE-2024-53241

In the Linux kernel, the following vulnerability has been resolved: x86/xen: don't do PV iret hypercall through hypercall page Instead of jumping to the Xen hypercall page for doing the iret hypercall, directly code the required sequence in xen-asm.S. This is done in preparation of no longer usin...

5.5CVSS7.7AI score0.00304EPSS
Exploits0References25
RedHat Linux
RedHat Linux
added 2024/09/24 1:11 a.m.21 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as...

8.1CVSS7.3AI score0.01305EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/08/28 12:0 a.m.38 views

RHEL 9 : kernel (RHSA-2024:5928)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5928 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nftables: nftsetrbtree skip en...

7.8CVSS7.1AI score0.02224EPSS
Exploits2References83
AlmaLinux
AlmaLinux
added 2024/08/28 12:0 a.m.63 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nftables: nftsetrbtree skip end interval element from gc CVE-2024-26581 kernel: netfilter: nftlimit: reject configurations that cause integer overflow CVE-2024-26668 kernel: vfio/pci: Loc...

7.8CVSS7.4AI score0.02224EPSS
Exploits2References84
RedHat Linux
RedHat Linux
added 2024/07/29 12:39 p.m.6 views

No title provided

REJECTED CVE In the Linux kernel, the following vulnerability has been resolved: x86/xen: Add some null pointer checking to smp.c The Linux kernel CVE team has assigned CVE-2024-26908 to this issue...

6.2AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/07/24 1:20 p.m.54 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8CVSS6.8AI score0.02224EPSS
Exploits1References48
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.49 views

RHEL 9 : kernel (RHSA-2024:4823)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4823 advisory. kernel: vmwgfx: multiple flaws CVE-2022-36402, CVE-2022-40133, CVE-2022-38457, CVE-2023-5633 kernel: nftables: CVE-2024-26581 kernel: uio:...

8CVSS7AI score0.02224EPSS
Exploits1References94
OSV
OSV
added 2024/06/25 3:15 p.m.3 views

UBUNTU-CVE-2021-4440

In the Linux kernel, the following vulnerability has been resolved: x86/xen: Drop USERGSSYSRET64 paravirt call commit afd30525a659ac0ae0904f0cb4a2ca75522c3123 upstream. USERGSSYSRET64 is used to return from a syscall via SYSRET, but a Xen PV guest will nevertheless use the IRET hypercall, as ther...

8.8CVSS5.7AI score0.00227EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/06/25 2:20 p.m.20 views

CVE-2021-4440

In the Linux kernel, the following vulnerability has been resolved: x86/xen: Drop USERGSSYSRET64 paravirt call commit afd30525a659ac0ae0904f0cb4a2ca75522c3123 upstream. USERGSSYSRET64 is used to return from a syscall via SYSRET, but a Xen PV guest will nevertheless use the IRET hypercall, as ther...

8.8CVSS5.9AI score0.00227EPSS
Exploits0
CVE
CVE
added 2024/06/25 2:20 p.m.92 views

CVE-2021-4440

CVE-2021-4440 (Linux kernel) fixed by commit afd30525a659ac0ae0904f0cb4a2ca75522c3123 upstream: in x86/xen, the paravirt USERGS_SYSRET64 path was dropped and the exit from user space now uses the iret exit from the start instead of sysret, avoiding stack-mangling prerequisites in Xen PV guests. T...

8.8CVSS8.2AI score0.00227EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/25 2:20 p.m.22 views

CVE-2021-4440 x86/xen: Drop USERGS_SYSRET64 paravirt call

In the Linux kernel, the following vulnerability has been resolved: x86/xen: Drop USERGSSYSRET64 paravirt call commit afd30525a659ac0ae0904f0cb4a2ca75522c3123 upstream. USERGSSYSRET64 is used to return from a syscall via SYSRET, but a Xen PV guest will nevertheless use the IRET hypercall, as ther...

6.8AI score0.00227EPSS
Exploits0References2
Rows per page
Query Builder