Search CVE reports
161 – 170 of 470 results
Some fixes available 64 of 72
Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with...
168 affected packages
linux-azure-6.8, linux-gkeop, linux-oem-6.11, linux-aws-5.4, linux-aws-hwe...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gkeop | Not affected | Not affected | Not affected | Not in release |
| linux-oem-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-bluefield | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle | Not affected | Not affected | Not affected | Not affected |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-fips | Not in release | Not affected | Not affected | Not affected |
| linux-fips | Not in release | Not affected | Not affected | Not affected |
| linux-intel-iot-realtime | Not in release | Not affected | Not in release | Not in release |
| linux-raspi-realtime | Not affected | Not in release | Not in release | Not in release |
| linux-realtime | Not affected | Not affected | Not in release | Not in release |
| linux-hwe-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-lowlatency-hwe-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-allwinner | Not in release | Not in release | Not in release | Not in release |
| linux-allwinner-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-riscv-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-starfive-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-tegra | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-tegra-igx | Not in release | Not affected | Not in release | Not in release |
| linux-goldfish | Not in release | Not in release | Not in release | Not in release |
| linux-grouper | Not in release | Not in release | Not in release | Not in release |
| linux-lts-utopic | Not in release | Not in release | Not in release | Not in release |
| linux-lts-vivid | Not in release | Not in release | Not in release | Not in release |
| linux-lts-wily | Not in release | Not in release | Not in release | Not in release |
| linux-mako | Not in release | Not in release | Not in release | Not in release |
| linux-manta | Not in release | Not in release | Not in release | Not in release |
| linux-azure-nvidia | Not affected | Not in release | Not in release | Not in release |
| linux-azure-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux | Not affected | Not affected | Not affected | Fixed |
| linux-lts-trusty | Not in release | Not in release | Not in release | Not in release |
| linux-maguro | Not in release | Not in release | Not in release | Not in release |
| linux-flo | Not in release | Not in release | Not in release | Not in release |
| linux-raspi2 | Not in release | Not in release | Ignored | Fixed |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-snapdragon | Not in release | Not in release | Not in release | Fixed |
| linux-aws | Not affected | Not affected | Not affected | Fixed |
| linux-hwe | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-edge | Not in release | Not in release | Not in release | Not affected |
| linux-gke | Not affected | Not affected | Not affected | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-gke-5.0 | Not in release | Not in release | Not in release | Not affected |
| linux-azure | Not affected | Not affected | Not affected | Fixed |
| linux-azure-edge | Not in release | Not in release | Not in release | Fixed |
| linux-gcp | Not affected | Not affected | Not affected | Fixed |
| linux-kvm | Not in release | Not affected | Not affected | Fixed |
| linux-euclid | Not in release | Not in release | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Fixed |
| qemu | Fixed | Fixed | Fixed | Fixed |
| qemu-kvm | Not in release | Not in release | Not in release | Not in release |
| libvirt | Fixed | Fixed | Fixed | Fixed |
| intel-microcode | Not affected | Not affected | Not affected | Fixed |
| linux-gcp-edge | Not in release | Not in release | Not in release | Fixed |
| linux-oem-osp1 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Not affected |
| linux-raspi2-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-oem-5.6 | Not in release | Not in release | Not affected | Not in release |
| linux-gke-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-oracle-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-riscv | Not affected | Not affected | Not affected | Not in release |
| linux-raspi | Not affected | Not affected | Not affected | Not in release |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected |
| xen | Not affected | Not affected | Not affected | Not affected |
| linux-hwe-5.8 | Not in release | Not in release | Not affected | Not in release |
| linux-gke-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-gkeop-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-dell300x | Not in release | Not in release | Not in release | Not affected |
| linux-oem-5.10 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.8 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.8 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.8 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.8 | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-5.8 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-ibm | Not affected | Not affected | Not affected | Not in release |
| linux-gcp-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-5.14 | Not in release | Not in release | Not affected | Not in release |
| linux-intel-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-fde | Not in release | Not affected | Not affected | Not in release |
| linux-azure-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency | Not affected | Not affected | Not in release | Not in release |
| linux-oem-5.17 | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gke-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-6.0 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.1 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-iot | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fde-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release |
| linux-nvidia | Not affected | Not affected | Not in release | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-starfive | Not in release | Not in release | Not in release | Not in release |
| linux-aws-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-fde-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-starfive-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-laptop | Not in release | Not in release | Not in release | Not in release |
| linux-oem-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-riscv-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-starfive-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-fips | Not in release | Not affected | Not affected | Not affected |
| linux-gcp-fips | Not in release | Not affected | Not affected | Not affected |
| linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release |
| linux-intel | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-tegra-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-riscv-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-ibm-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-oracle-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-6.11 | Not affected | Not in release | Not in release | Not in release |
In QEMU 3.1.0, load_device_tree in device_tree.c calls the deprecated load_image function, which has a buffer overflow risk.
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qemu | — | — | Fixed | Fixed |
| qemu-kvm | — | — | Not in release | Not in release |
QEMU can have an infinite loop in hw/rdma/vmw/pvrdma_dev_ring.c because return values are not checked (and -1 is mishandled).
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qemu | — | — | — | Not affected |
| qemu-kvm | — | — | — | Not in release |
hw/rdma/vmw/pvrdma_main.c in QEMU does not implement a read operation (such as uar_read by analogy to uar_write), which allows attackers to cause a denial of service (NULL pointer dereference).
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qemu | — | — | — | Not affected |
| qemu-kvm | — | — | — | Not in release |
hw/rdma/vmw/pvrdma_cmd.c in QEMU allows create_cq and create_qp memory leaks because errors are mishandled.
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qemu | — | — | — | Not affected |
| qemu-kvm | — | — | — | Not in release |
hw/rdma/vmw/pvrdma_cmd.c in QEMU allows attackers to cause a denial of service (NULL pointer dereference or excessive memory allocation) in create_cq_ring or create_qp_rings.
2 affected packages
qemu-kvm, qemu
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qemu-kvm | — | — | — | Not in release |
| qemu | — | — | — | Not affected |
hw/rdma/rdma_backend.c in QEMU allows guest OS users to trigger out-of-bounds access via a PvrdmaSqWqe ring element with a large num_sge value.
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qemu | — | — | — | Not affected |
| qemu-kvm | — | — | — | Not in release |
pvrdma_realize in hw/rdma/vmw/pvrdma_main.c in QEMU has a Memory leak after an initialisation error.
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qemu | — | — | — | Not affected |
| qemu-kvm | — | — | — | Not in release |
The Bluetooth subsystem in QEMU mishandles negative values for length variables, leading to memory corruption.
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qemu | — | — | Not affected | Ignored |
| qemu-kvm | — | — | Not in release | Not in release |
v9fs_wstat in hw/9pfs/9p.c in QEMU allows guest OS users to cause a denial of service (crash) because of a race condition during file renaming.
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qemu | — | — | Not affected | Fixed |
| qemu-kvm | — | — | Not in release | Not in release |