-
w.r.t. https://github.com/CWE-CAPEC/hw-cwe-sig/pull/5
The [current proposal](https://github.com/CWE-CAPEC/hw-cwe-sig/blob/a8e441793bc4d53eb4df44f0ac8a2f1887614efa/working-docs/transient.md) has two…
-
### Qubes OS version:
R4
### Affected component(s):
probably any Debian based TemplateVM (debian-9 tested by me), Whonix 14 (tested by me)
not affected: Fedora
---
### Steps to reproduc…
-
**Describe the bug**
the Raspberry Pi 4's Cortex-A72 cores are vulnerable to Spectre v4 (Speculative Store Bypass, CVE-2018-3639). [according to ARM](https://developer.arm.com/support/arm-security-up…
-
Tested on Linux 6.9-rc1 and 6.9-rc2, the script reports being vulnerable to CVE-2017-5715 despite having retpoline enabled in the kernel:
```
CVE-2017-5715 aka 'Spectre Variant 2, branch target in…
Salz updated
3 months ago
-
|Platform|From|To|
|--|--|--|
|Debian 12|4.7.5-rc1|4.8.0-rc3|
We are tasked with performing a comprehensive analysis of vulnerability discrepancies reported between versions 4.7.5 and 4.8.0 in De…
-
Hi,
using the script on latest Ubuntu 23.10 causes an error.
It seems that they use dash instead of bash now.
When i enforce bash by changing #! /bin/sh to #! /bin/bash it is fine again:
```
we…
kohnw updated
8 months ago
-
## Checklist
* [x] Source tarball saved internally ([instructions](https://wiki.freedom.press/wiki/Responding_to_source_requests_for_SecureDrop_kernels#How_to_upload_SecureDrop_kernel_tarballs))
* […
-
# What did you do? (required. The issue will be **closed** when not provided.)
I tried to scan a windows 2019 server from a vuls server installed on Red Hat Entreprise Linux 8
# What did you expe…
-
[How to file a helpful issue](https://www.qubes-os.org/doc/issue-tracking/)
### Qubes OS release
4.1
### Brief summary
Qubes dom0 whether its 4.1 , 4.0.. were always vulnerable to so…
-
Being done in coordination with freedomofpress/securedrop#6938.
## Checklist
* [x] Source tarball saved internally ([instructions](https://wiki.freedom.press/wiki/Responding_to_source_requests_for…