Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arch linux vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2009-4004
Buffer overflow in the kvm_vcpu_ioctl_x86_setup_mce function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel prior to 2.6.32-rc7 allows local users to cause a denial of service (memory corruption) or possibly gain privileges via a KVM_X86_SETUP_MCE IOCTL request th...
Linux Linux Kernel 2.6.32
Linux Linux Kernel
7.1
CVSSv3
CVE-2021-32078
An Out-of-Bounds Read exists in arch/arm/mach-footbridge/personal-pci.c in the Linux kernel up to and including 5.12.11 because of the lack of a check for a value that shouldn't be negative, e.g., access to element -2 of an array, aka CID-298a58e165e4.
Linux Linux Kernel
NA
CVE-2014-8480
The instruction decoder in arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel prior to 3.18-rc2 lacks intended decoder-table flags for certain RIP-relative instructions, which allows guest OS users to cause a denial of service (NULL pointer dereference and host OS cr...
Linux Linux Kernel
4.4
CVSSv3
CVE-2021-4032
A vulnerability was found in the Linux kernel's KVM subsystem in arch/x86/kvm/lapic.c kvm_free_lapic when a failure allocation was detected. In this flaw the KVM subsystem may crash the kernel due to mishandling of memory errors that happens during VCPU construction, which a...
Linux Linux Kernel
Linux Linux Kernel 5.15
2 Github repositories
5.5
CVSSv3
CVE-2020-27152
An issue exists in ioapic_lazy_update_eoi in arch/x86/kvm/ioapic.c in the Linux kernel prior to 5.9.2. It has an infinite loop related to improper interaction between a resampler and edge triggering, aka CID-77377064c3a9.
Linux Linux Kernel
6
CVSSv3
CVE-2011-2707
The ptrace_setxregs function in arch/xtensa/kernel/ptrace.c in the Linux kernel prior to 3.1 does not validate user-space pointers, which allows local users to obtain sensitive information from kernel memory locations via a crafted PTRACE_SETXTREGS request.
Linux Linux Kernel
7
CVSSv3
CVE-2017-17053
The init_new_context function in arch/x86/include/asm/mmu_context.h in the Linux kernel prior to 4.12.10 does not correctly handle errors from LDT table allocation when forking a new process, allowing a local malicious user to achieve a use-after-free or possibly have unspecified...
Linux Linux Kernel
1 Github repository
5.5
CVSSv3
CVE-2015-2672
The xsave/xrstor implementation in arch/x86/include/asm/xsave.h in the Linux kernel prior to 3.19.2 creates certain .altinstr_replacement pointers and consequently does not provide any protection against instruction faulting, which allows local users to cause a denial of service ...
Linux Linux Kernel
NA
CVE-2011-2521
The x86_assign_hw_event function in arch/x86/kernel/cpu/perf_event.c in the Performance Events subsystem in the Linux kernel prior to 2.6.39 does not properly calculate counter values, which allows local users to cause a denial of service (panic) via the perf program.
Linux Linux Kernel
7.8
CVSSv3
CVE-2020-36313
An issue exists in the Linux kernel prior to 5.7. The KVM subsystem allows out-of-range access to memslots after a deletion, aka CID-0774a964ef56. This affects arch/s390/kvm/kvm-s390.c, include/linux/kvm_host.h, and virt/kvm/kvm_main.c.
Linux Linux Kernel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »