Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: Avoid corrupting the page-mapping in hugetlbmcopyatomicpte. In the MCOPYATOMICCONTINUE case with a non-shared VMA, the pages in the page cache are stored in the ptes. However, hugepageaddnewanonrmap is called for them...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000906)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000906 advisory. A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VMSHARED hugetlbfs...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002738)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002738 advisory. A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VMSHARED hugetlbfs...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003395)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003395 advisory. A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13.12. A lack of size check could cause a denial of service BUG...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003123)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003123 advisory. A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13.12. A lack of size check could cause a denial of service BUG...

Linux Distros Unpatched Vulnerability : CVE-2022-49991

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: avoid corrupting page-mapping in hugetlbmcopyatomicpte In MCOPYATOMICCONTINUE ca...

SUSE CVE-2022-49991

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: avoid corrupting page-mapping in hugetlbmcopyatomicpte In MCOPYATOMICCONTINUE case with a non-shared VMA, pages in the page cache are installed in the ptes. But hugepageaddnewanonrmap is called for them mistakenly...

UBUNTU-CVE-2022-49991

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: avoid corrupting page-mapping in hugetlbmcopyatomicpte In MCOPYATOMICCONTINUE case with a non-shared VMA, pages in the page cache are installed in the ptes. But hugepageaddnewanonrmap is called for them mistakenly...

SUSE CVE-2015-4605

The mcopy function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly restrict a certain offset value, which allows remote attackers to cause a denial of service application crash or possibly execute...

SUSE CVE-2017-15127

A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VMSHARED hugetlbfs mapping could trigger a local denial of service BUG...

SUSE CVE-2017-15128

A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13.12. A lack of size check could cause a denial of service BUG...

OSV-2016-7 Heap-buffer-overflow in mcopy

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=153 Crash type: Heap-buffer-overflow READ 1 Crash state: mcopy mget match...

OSV-2017-52 Use-of-uninitialized-value in mcopy

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2242 Crash type: Use-of-uninitialized-value Crash state: mcopy mget match...

Linux kernel denial of service vulnerability (CNVD-2018-03215)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A denial of service vulnerability exists in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel. T...

UBUNTU-CVE-2017-15127

A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VMSHARED hugetlbfs mapping could trigger a local denial of service BUG...

UBUNTU-CVE-2017-15128

A flaw was found in the hugetlbmcopyatomicpte function in mm/hugetlb.c in the Linux kernel before 4.13.12. A lack of size check could cause a denial of service BUG...

CVE-2017-15128

The CVE-2017-15128 issue affects the Linux kernel’s hugetlb_mcopy_atomic_pte function (mm/hugetlb.c) prior to version 4.13.12, where a missing size check can lead to a denial of service (BUG). Public sources in connected advisories (e.g., EulerOS/Unity Linux Nessus plugins) corroborate that vulne...

PT-2018-5774 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.13 Description: A flaw was found in the hugetlb mcopy atomic pte function in mm/hugetlb.c. This issue could trigger a local denial of service due to a superfluous implicit page unlock for VM SHARED hugetlbfs...

file: Use-of-uninitialized-value in mcopy

Project: https://github.com/file/file.git Detailed report: https://oss-fuzz.com/testcase?key=5104716310642688 Project: file Fuzzer: libFuzzerfilemagicfuzzer Fuzz target binary: magicfuzzer Job Type: libfuzzermsanfile Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash...

Code injection

The mcopy function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly restrict a certain offset value, which allows remote attackers to cause a denial of service application crash or possibly execute...