exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

exploitDog

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 16

Количество 16

CVE-2024-46794

почти 2 года назад

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_read() function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmio_read() unintentionally exposes the value of an initialized variable (val) on the stack to the VMM. This variable is only needed as an output value. It did not need to be passed to the VMM in the first place. Do not send the original value of *val to the VMM. [ dhansen: clarify what 'val' is used for. ]

CVSS3: 3.3

EPSS: Низкий

CVE-2024-46794

почти 2 года назад

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_read() function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmio_read() unintentionally exposes the value of an initialized variable (val) on the stack to the VMM. This variable is only needed as an output value. It did not need to be passed to the VMM in the first place. Do not send the original value of *val to the VMM. [ dhansen: clarify what 'val' is used for. ]

CVSS3: 5.5

EPSS: Низкий

CVE-2024-46794

почти 2 года назад

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_read() function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmio_read() unintentionally exposes the value of an initialized variable (val) on the stack to the VMM. This variable is only needed as an output value. It did not need to be passed to the VMM in the first place. Do not send the original value of *val to the VMM. [ dhansen: clarify what 'val' is used for. ]

CVSS3: 3.3

EPSS: Низкий

CVE-2024-46794

4 месяца назад

x86/tdx: Fix data leak in mmio_read()

EPSS: Низкий

CVE-2024-46794

почти 2 года назад

In the Linux kernel, the following vulnerability has been resolved: x ...

CVSS3: 3.3

EPSS: Низкий

GHSA-cx75-fvjc-vvr8

почти 2 года назад

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_read() function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmio_read() unintentionally exposes the value of an initialized variable (val) on the stack to the VMM. This variable is only needed as an output value. It did not need to be passed to the VMM in the first place. Do not send the original value of *val to the VMM. [ dhansen: clarify what 'val' is used for. ]

CVSS3: 3.3

EPSS: Низкий

BDU:2024-08072

почти 2 года назад

Уязвимость функции mmio_read() ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.5

EPSS: Низкий

BDU:2024-08078

почти 2 года назад

Уязвимость функции mmio_read() ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.5

EPSS: Низкий

ROS-20241009-03

больше 1 года назад

Множественные уязвимости kernel-lt

CVSS3: 7.8

EPSS: Низкий

SUSE-SU-2024:3592-1

больше 1 года назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3569-1

больше 1 года назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3587-1

больше 1 года назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3553-1

больше 1 года назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3564-1

больше 1 года назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3561-1

больше 1 года назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3551-1

больше 1 года назад

Security update for the Linux Kernel

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2024-46794 In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_read() function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmio_read() unintentionally exposes the value of an initialized variable (val) on the stack to the VMM. This variable is only needed as an output value. It did not need to be passed to the VMM in the first place. Do not send the original value of *val to the VMM. [ dhansen: clarify what 'val' is used for. ]	CVSS3: 3.3	0% Низкий	почти 2 года назад
	CVE-2024-46794 In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_read() function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmio_read() unintentionally exposes the value of an initialized variable (val) on the stack to the VMM. This variable is only needed as an output value. It did not need to be passed to the VMM in the first place. Do not send the original value of *val to the VMM. [ dhansen: clarify what 'val' is used for. ]	CVSS3: 5.5	0% Низкий	почти 2 года назад
	CVE-2024-46794 In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_read() function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmio_read() unintentionally exposes the value of an initialized variable (val) on the stack to the VMM. This variable is only needed as an output value. It did not need to be passed to the VMM in the first place. Do not send the original value of *val to the VMM. [ dhansen: clarify what 'val' is used for. ]	CVSS3: 3.3	0% Низкий	почти 2 года назад
	CVE-2024-46794 x86/tdx: Fix data leak in mmio_read()		0% Низкий	4 месяца назад
	CVE-2024-46794 In the Linux kernel, the following vulnerability has been resolved: x ...	CVSS3: 3.3	0% Низкий	почти 2 года назад
	GHSA-cx75-fvjc-vvr8 In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_read() function makes a TDVMCALL to retrieve MMIO data for an address from the VMM. Sean noticed that mmio_read() unintentionally exposes the value of an initialized variable (val) on the stack to the VMM. This variable is only needed as an output value. It did not need to be passed to the VMM in the first place. Do not send the original value of *val to the VMM. [ dhansen: clarify what 'val' is used for. ]	CVSS3: 3.3	0% Низкий	почти 2 года назад
	BDU:2024-08072 Уязвимость функции mmio_read() ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 5.5	0% Низкий	почти 2 года назад
	BDU:2024-08078 Уязвимость функции mmio_read() ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 5.5	0% Низкий	почти 2 года назад
	ROS-20241009-03 Множественные уязвимости kernel-lt	CVSS3: 7.8		больше 1 года назад
	SUSE-SU-2024:3592-1 Security update for the Linux Kernel			больше 1 года назад
	SUSE-SU-2024:3569-1 Security update for the Linux Kernel			больше 1 года назад
	SUSE-SU-2024:3587-1 Security update for the Linux Kernel			больше 1 года назад
	SUSE-SU-2024:3553-1 Security update for the Linux Kernel			больше 1 года назад
	SUSE-SU-2024:3564-1 Security update for the Linux Kernel			больше 1 года назад
	SUSE-SU-2024:3561-1 Security update for the Linux Kernel			больше 1 года назад
	SUSE-SU-2024:3551-1 Security update for the Linux Kernel			больше 1 года назад

Уязвимостей на страницу

exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.