The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
An issue was discovered in ioapic_lazy_update_eoi in arch/x86/kvm/ioapic.c in the Linux kernel before 5.9.2. It has an infinite loop related to improper interaction between a resampler and edge triggering, aka CID-77377064c3a9.
Base Score: 2.1
Impact Score: 2.9
Exploitability Score: 3.9
Base Score: 5.5
Impact Score: 3.6
Exploitability Score: 1.8
|148422||CentOS 8 : kernel (CESA-2021:1093)||Nessus||CentOS Local Security Checks|
|148371||Oracle Linux 8 : kernel (ELSA-2021-1093)||Nessus||Oracle Linux Local Security Checks|
|148370||RHEL 8 : kernel (RHSA-2021:1093)||Nessus||Red Hat Local Security Checks|
|148369||RHEL 8 : kernel-rt (RHSA-2021:1081)||Nessus||Red Hat Local Security Checks|
|147982||Ubuntu 20.04 LTS : Linux kernel (OEM) vulnerabilities (USN-4752-1)||Nessus||Ubuntu Local Security Checks|
|143429||Ubuntu 20.10 : Linux kernel vulnerabilities (USN-4659-1)||Nessus||Ubuntu Local Security Checks|