Lucene search
K

69 matches found

RedHat Linux
RedHat Linux
added 2026/06/29 7:50 p.m.4 views

kernel: mm/page_alloc: clear page->private in free_pages_prepare()

A flaw was found in the Linux kernel's memory management subsystem. When pages are freed, the page-private field is not properly cleared. If these pages are later reallocated as high-order pages and split, the tail pages can retain stale page-private values. This can lead to a use-after-free...

7.8CVSS7AI score0.0013EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/22 6:28 a.m.6 views

kernel: mm/page_alloc: clear page->private in free_pages_prepare()

A flaw was found in the Linux kernel's memory management subsystem. When pages are freed, the page-private field is not properly cleared. If these pages are later reallocated as high-order pages and split, the tail pages can retain stale page-private values. This can lead to a use-after-free...

7.8CVSS5.8AI score0.0013EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: tee: amdtee: fixed an issue where ISERR returned NULL instead of an error pointer. The getfreepages function does not return error pointers; it returns NULL instead. Therefore, this condition needs to be corrected to avoid NUL...

5.5CVSS5.9AI score0.00239EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/28 3:53 a.m.13 views

SUSE CVE-2026-46068

In the Linux kernel, the following vulnerability has been resolved: crypto: nx - fix bounce buffer leaks in nx842cryptoalloc,freectx The bounce buffers are allocated with getfreepages using BOUNCEBUFFERORDER order 2 = 4 pages, but both the allocation error path and nx842cryptofreectx release the...

3.3CVSS5.8AI score0.00129EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/05/28 2:41 a.m.27 views

kernel: mm/page_alloc: clear page->private in free_pages_prepare()

A flaw was found in the Linux kernel's memory management subsystem. When pages are freed, the page-private field is not properly cleared. If these pages are later reallocated as high-order pages and split, the tail pages can retain stale page-private values. This can lead to a use-after-free...

7.8CVSS5.8AI score0.0013EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/28 2:21 a.m.19 views

kernel: mm/page_alloc: clear page->private in free_pages_prepare()

A flaw was found in the Linux kernel's memory management subsystem. When pages are freed, the page-private field is not properly cleared. If these pages are later reallocated as high-order pages and split, the tail pages can retain stale page-private values. This can lead to a use-after-free...

7.8CVSS5.8AI score0.0013EPSS
Exploits0References5
NVD
NVD
added 2026/05/27 2:17 p.m.10 views

CVE-2026-46068

In the Linux kernel, the following vulnerability has been resolved: crypto: nx - fix bounce buffer leaks in nx842cryptoalloc,freectx The bounce buffers are allocated with getfreepages using BOUNCEBUFFERORDER order 2 = 4 pages, but both the allocation error path and nx842cryptofreectx release the...

7.8CVSS0.00129EPSS
Exploits0References5
OSV
OSV
added 2026/05/27 2:17 p.m.5 views

UBUNTU-CVE-2026-46068

In the Linux kernel, the following vulnerability has been resolved: crypto: nx - fix bounce buffer leaks in nx842cryptoalloc,freectx The bounce buffers are allocated with getfreepages using BOUNCEBUFFERORDER order 2 = 4 pages, but both the allocation error path and nx842cryptofreectx release the...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References7
EUVD
EUVD
added 2026/05/27 12:57 p.m.11 views

EUVD-2026-32450

In the Linux kernel, the following vulnerability has been resolved: crypto: nx - fix bounce buffer leaks in nx842cryptoalloc,freectx The bounce buffers are allocated with getfreepages using BOUNCEBUFFERORDER order 2 = 4 pages, but both the allocation error path and nx842cryptofreectx release the...

5.9AI score0.00129EPSS
Exploits0References5
CVE
CVE
added 2026/05/27 12:57 p.m.24 views

CVE-2026-46068

CVE-2026-46068 affects the Linux kernel's crypto nx path: bounce buffers allocated with _get_free_pages() (BOUNCE_BUFFER_ORDER) are freed with free_page() instead of free_pages(), causing memory leaks. The fix uses free_pages() with the matching order in nx842_crypto {alloc,free}_ctx. Affected: L...

7.8CVSS5.9AI score0.00129EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/05/27 12:56 p.m.27 views

CVE-2026-46019

CVE-2026-46019 concerns the Linux kernel crypto/atmel-aes path. The issue: atmel_aes_buff_init() allocates 4 pages (ATMEL_AES_BUFFER_ORDER) but atmel_aes_buff_cleanup() frees only the first page via free_page(), leaking 3 pages. Resolution: use free_pages() with ATMEL_AES_BUFFER_ORDER to properly...

5.5CVSS5.8AI score0.00163EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.12 views

PT-2026-43935

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description A memory leak occurs in the Linux kernel crypto nx component. The functions nx842 crypto alloc ctx and nx842 crypto free ctx allocate bounce buffers using get free pages with a specific...

7.8CVSS6.2AI score0.00129EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: mm: pagealloc: moving the mlocked flag to freepagesprepare Syzbot reported a problem with bad page state caused by a page being freed using freepage, while the mlocked flag is still set during the freepagesprepare stage: BUG: Bad...

5.5CVSS6.3AI score0.00233EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: In the mm/pagealloc function, the clearpage-private operation is performed in freepagesprepare. Several subsystems slub, shmem, ttm, etc. use page-private, but they do not clear it before freeing pages. When these pages are later...

7.8CVSS5.7AI score0.0013EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: mm: vmscan: accounts for free pages to prevent infinite loops in throttledirectreclaim. The task sometimes continues looping in throttledirectreclaim because allowdirectreclaimpgdat keeps returning false. The stack trace is as...

5.5CVSS6.2AI score0.00207EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y – Do not call freepagesexact with a NULL address. Unlike some other functions, we cannot pass a NULL pointer to freepagesexact. Add a proper NULL check to avoid potential errors...

5.5CVSS5.8AI score0.00239EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.7 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021637)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021637 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: vmscan: account for free pages to prevent infinite Loop in throttledirectreclaim The task...

5.5CVSS6AI score0.00207EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/05/13 3:35 a.m.10 views

SUSE CVE-2026-43303

In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: clear page-private in freepagesprepare Several subsystems slub, shmem, ttm, etc. use page-private but don't clear it before freeing pages. When these pages are later allocated as high-order pages and split via...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/08 3:31 p.m.8 views

EUVD-2026-28573

In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: clear page-private in freepagesprepare Several subsystems slub, shmem, ttm, etc. use page-private but don't clear it before freeing pages. When these pages are later allocated as high-order pages and split via...

5.8AI score0.0013EPSS
Exploits0References4
NVD
NVD
added 2026/05/08 2:16 p.m.8 views

CVE-2026-43303

In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: clear page-private in freepagesprepare Several subsystems slub, shmem, ttm, etc. use page-private but don't clear it before freeing pages. When these pages are later allocated as high-order pages and split via...

7.8CVSS0.0013EPSS
Exploits0References6
Rows per page
Query Builder