Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: fork: Invoke khugepaged and ksm hooks only if there is no error. There is no reason to invoke these hooks early on an MM that is in an incomplete state. The change in commit d24062914837 “fork: use mtdup to duplicate the maple tr...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: mapletree: Fixed the MASTATEPREALLOC flag in maspreallocate. The preallocation flag is temporarily cleared when explicit requests for allocations are made. Existing allocations are already counted against the request through...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: mapletree: Fixed potential out-of-bounds access in maswrendpiv. Check the write offset’s end bounds before using it as an offset into the pivot array. This prevents possible out-of-bounds access to the pivot array if the write...

ROS-20260317-73-0007

A vulnerability in the maspreallocate function of the lib/mapletree.c module of the Linux kernel is related to pointer dereferencing resulting from incorrect memory allocation. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

SUSE CVE-2025-71072

In the Linux kernel, the following vulnerability has been resolved: shmem: fix recovery on rename failures mapletree insertions can fail if we are seriously short on memory; simpleoffsetrename does not recover well if it runs into that. The same goes for simpleoffsetrenameexchange. Moreover,...

CVE-2025-71072

CVE-2025-71072 : In the Linux kernel, a rename/recovery issue in shmem was fixed. The root cause affected how maple_tree insertions and simple_offset_rename() pathways handled memory pressure and failure paths, including simple_offset_rename_exchange(). The fix involves how shmem_rename2() pre-in...

SUSE CVE-2023-54135

In the Linux kernel, the following vulnerability has been resolved: mapletree: fix potential out-of-bounds access in maswrendpiv Check the write offset end bounds before using it as the offset into the pivot array. This avoids a possible out-of-bounds access on the pivot array if the write extend...

CVE-2023-54135

In the Linux kernel, the following vulnerability has been resolved: mapletree: fix potential out-of-bounds access in maswrendpiv Check the write offset end bounds before using it as the offset into the pivot array. This avoids a possible out-of-bounds access on the pivot array if the write extend...

UBUNTU-CVE-2023-54135

In the Linux kernel, the following vulnerability has been resolved: mapletree: fix potential out-of-bounds access in maswrendpiv Check the write offset end bounds before using it as the offset into the pivot array. This avoids a possible out-of-bounds access on the pivot array if the write extend...

CVE-2023-54135

Technical details about CVE-2023-54135 are not provided in the supplied documents. The Linux kernel mapletree out-of-bounds fix is described at a high level; monitor vendor advisories for affected products, impact, and remediation specifics.

PT-2025-53212

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s maple tree implementation, specifically within the mas wr end piv function. The issue involves a potential out-of-bounds access when determining the...

EUVD-2023-59994

BYTEVALUE Intelligent Flow Control Router contains a command injection vulnerability via the /goform/webRead/open endpoint. The path parameter is not properly validated and is echoed into a shell context, allowing an attacker to inject and execute arbitrary shell commands on the device. Successfu...

SUSE CVE-2023-53614

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix race with VMA iteration and mmstruct teardown exitmmap will tear down the VMAs and maple tree with the mmaplock held in write mode. Ensure that the maple tree is still valid by checking ksmtestexit after taking the...

CVE-2023-53614

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix race with VMA iteration and mmstruct teardown exitmmap will tear down the VMAs and maple tree with the mmaplock held in write mode. Ensure that the maple tree is still valid by checking ksmtestexit after taking the...

UBUNTU-CVE-2023-53614

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix race with VMA iteration and mmstruct teardown exitmmap will tear down the VMAs and maple tree with the mmaplock held in write mode. Ensure that the maple tree is still valid by checking ksmtestexit after taking the...

CVE-2023-53614

Summary: CVE-2023-53614 affects the Linux kernel in the mm/ksm path, where exit_mmap() may teardown VMAs and the maple tree while mmap_lock is held, risking a destroyed maple tree being dereferenced. The fix ensures maple tree validity by checking ksm_test_exit() after obtaining mmap_lock in read...

CVE-2023-53614 mm/ksm: fix race with VMA iteration and mm_struct teardown

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix race with VMA iteration and mmstruct teardown exitmmap will tear down the VMAs and maple tree with the mmaplock held in write mode. Ensure that the maple tree is still valid by checking ksmtestexit after taking the...

CVE-2023-53614 mm/ksm: fix race with VMA iteration and mm_struct teardown

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix race with VMA iteration and mmstruct teardown exitmmap will tear down the VMAs and maple tree with the mmaplock held in write mode. Ensure that the maple tree is still valid by checking ksmtestexit after taking the...

maple_tree: fix MA_STATE_PREALLOC flag in mas_preallocate()

...

The vulnerability of the mas_preallocate() function in the lib/maple_tree.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the maspreallocate function in the lib/mapletree.c module of the Linux kernel is related to the pointer dereferencing that occurs due to incorrect memory allocation. Exploiting this vulnerability can allow an attacker to cause a service failure...