28 matches found
Astra Linux - уязвимость в linux-5.10
A flaw was discovered in the subsequent getuserpagesfast function within the Linux kernel’s interface for symmetric key cipher algorithms, specifically in the skcipherrecvmsg function of the crypto/algifskcipher.c file. This flaw allows a local user to crash the system...
Astra Linux - уязвимость в linux-5.15, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: VMCI: Check context-notifypage after calling getuserpagesfast to avoid GPF. The call to getuserpagesfast in vmcihostunlockedioctl may return NULL for context-notifypage, causing a GPF. To avoid this, check if context-notifypage =...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004280)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004280 advisory. A flaw was found in the subsequent getuserpagesfast in the Linux kernels interface for symmetric key cipher algorithms in the skcipherrecvmsg of crypto/algifskcipher...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001667)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001667 advisory. A flaw was found in the subsequent getuserpagesfast in the Linux kernels interface for symmetric key cipher algorithms in the skcipherrecvmsg of crypto/algifskcipher...
SUSE CVE-2023-53633
In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix a leak in mapuserpages If getuserpagesfast allocates some pages but not as many as we wanted, then the current code leaks those pages. Call putpage on the pages before returning...
UBUNTU-CVE-2023-53633
In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix a leak in mapuserpages If getuserpagesfast allocates some pages but not as many as we wanted, then the current code leaks those pages. Call putpage on the pages before returning...
CVE-2023-53633 accel/qaic: Fix a leak in map_user_pages()
In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix a leak in mapuserpages If getuserpagesfast allocates some pages but not as many as we wanted, then the current code leaks those pages. Call putpage on the pages before returning...
SUSE CVE-2023-53259
In the Linux kernel, the following vulnerability has been resolved: VMCI: check context-notifypage after call to getuserpagesfast to avoid GPF The call to getuserpagesfast in vmcihostsetupnotify can return NULL context-notifypage causing a GPF. To avoid GPF check if context-notifypage == NULL and...
DEBIAN-CVE-2023-53259
In the Linux kernel, the following vulnerability has been resolved: VMCI: check context-notifypage after call to getuserpagesfast to avoid GPF The call to getuserpagesfast in vmcihostsetupnotify can return NULL context-notifypage causing a GPF. To avoid GPF check if context-notifypage == NULL and...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unchecked getuserpagesfast return value, which could result in a null pointer dereference...
mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race
...
CVE-2025-38434
In the Linux kernel, the following vulnerability has been resolved: Revert "riscv: Define TASKSIZEMAX for accessok" This reverts commit ad5643cf2f69 "riscv: Define TASKSIZEMAX for accessok". This commit changes TASKSIZEMAX to be LONGMAX to optimize accessok, because the previous TASKSIZEMAX defau...
UBUNTU-CVE-2025-38434
In the Linux kernel, the following vulnerability has been resolved: Revert "riscv: Define TASKSIZEMAX for accessok" This reverts commit ad5643cf2f69 "riscv: Define TASKSIZEMAX for accessok". This commit changes TASKSIZEMAX to be LONGMAX to optimize accessok, because the previous TASKSIZEMAX defau...
CVE-2025-38434
In the Linux kernel, the following vulnerability has been resolved: Revert "riscv: Define TASKSIZEMAX for accessok" This reverts commit ad5643cf2f69 "riscv: Define TASKSIZEMAX for accessok". This commit changes TASKSIZEMAX to be LONGMAX to optimize accessok, because the previous TASKSIZEMAX defau...
CVE-2025-38434 Revert "riscv: Define TASK_SIZE_MAX for __access_ok()"
In the Linux kernel, the following vulnerability has been resolved: Revert "riscv: Define TASKSIZEMAX for accessok" This reverts commit ad5643cf2f69 "riscv: Define TASKSIZEMAX for accessok". This commit changes TASKSIZEMAX to be LONGMAX to optimize accessok, because the previous TASKSIZEMAX defau...
CVE-2025-38434
Technical details for CVE-2025-38434 are not publicly provided in the connected documents. The sources do not specify affected products/versions, root cause, impact, or remediation; monitor for updates.
CVE-2025-38434 Revert "riscv: Define TASK_SIZE_MAX for __access_ok()"
In the Linux kernel, the following vulnerability has been resolved: Revert "riscv: Define TASKSIZEMAX for accessok" This reverts commit ad5643cf2f69 "riscv: Define TASKSIZEMAX for accessok". This commit changes TASKSIZEMAX to be LONGMAX to optimize accessok, because the previous TASKSIZEMAX defau...
DEBIAN-CVE-2025-38102
In the Linux kernel, the following vulnerability has been resolved: VMCI: fix race between vmcihostsetupnotify and vmcictxunsetnotify During our test, it is found that a warning can be trigger in trygrabfolio as follow: ------------ cut here ------------ WARNING: CPU: 0 PID: 1678 at mm/gup.c:147...
Amazon Linux 2 : kernel (ALASKERNEL-5.4-2024-076)
The version of kernel installed on the remote host is prior to 5.4.190-107.353. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2024-076 advisory. In the Linux kernel, the following vulnerability has been resolved: ubi: Fix race condition between...
SUSE CVE-2023-3108
A flaw was found in the subsequent getuserpagesfast in the Linux kernel's interface for symmetric key cipher algorithms in the skcipherrecvmsg of crypto/algifskcipher.c function. This flaw allows a local user to crash the system...