Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004431)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004431 advisory. In the Linux kernel before 4.20.14, expanddownwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NU...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004085)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004085 advisory. In the Linux kernel before 4.20.14, expanddownwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NU...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002083)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002083 advisory. The LISTPOISON feature in include/linux/poison.h in the Linux kernel before 4.3, as used in Android 6.0.1 before 2016-03-01, does not properly consider the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000244)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000244 advisory. In the Linux kernel before 4.20.14, expanddownwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NU...

RHEL 7 : kernel-alt (RHSA-2019:0831)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:0831 advisory. The kernel-alt packages provide the Linux kernel version 4.x. Security Fixes: kernel: lack of check for mmap minimum address in...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2019-4612)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4612 advisory. - can: gw: ensure DLC boundaries after CAN frame modification Oliver Hartkopp Orabug: 29215297 CVE-2019-3701 CVE-2019-3701 - exec: Fix mem leak in...

USN-3930-1: Linux kernel vulnerabilities

Mathias Payer and Hui Peng discovered a use-after-free vulnerability in the Advanced Linux Sound Architecture ALSA subsystem. A physically proximate attacker could use this to cause a denial of service system crash. CVE-2018-19824 Shlomi Oberman, Yuli Shapiro, and Ran Menscher discovered an...

CVE-2019-9213

In the Linux kernel before 4.20.14, expanddownwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task...

DEBIAN-CVE-2019-9213

In the Linux kernel before 4.20.14, expanddownwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task...

UBUNTU-CVE-2019-9213

In the Linux kernel before 4.20.14, expanddownwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task...

Android Linux kernel security bypass vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA, and the Linux kernel is the kernel used by Linux, the operating system released by the Linux Foundation in the United States. A security vulnerability exists in the LISTPOISON...

kernel: install_special_mapping skips security_file_mmap check

The installspecialmapping function in mm/mmap.c in the Linux kernel before 2.6.37-rc6 does not make an expected securityfilemmap function call, which allows local users to bypass intended mmapminaddr restrictions and possibly conduct NULL pointer dereference attacks via a crafted assembly-languag...

kernel: install_special_mapping skips security_file_mmap check

The installspecialmapping function in mm/mmap.c in the Linux kernel before 2.6.37-rc6 does not make an expected securityfilemmap function call, which allows local users to bypass intended mmapminaddr restrictions and possibly conduct NULL pointer dereference attacks via a crafted assembly-languag...

kernel: install_special_mapping skips security_file_mmap check

The installspecialmapping function in mm/mmap.c in the Linux kernel before 2.6.37-rc6 does not make an expected securityfilemmap function call, which allows local users to bypass intended mmapminaddr restrictions and possibly conduct NULL pointer dereference attacks via a crafted assembly-languag...

PT-2010-5429 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.37-rc6 Description: The issue is related to the install special mapping function in mm/mmap.c, which fails to make an expected security file mmap function call. This allows local users to bypass intended mma...

kernel: SELinux and mmap_min_addr

The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to 1 the default configuration of the allowunconfinedmmapl...

kernel: personality: fix PER_CLEAR_ON_SETID

The personality subsystem in the Linux kernel before 2.6.31-rc3 has a PERCLEARONSETID setting that does not clear the ADDRCOMPATLAYOUT and MMAPPAGEZERO flags when executing a setuid or setgid program, which makes it easier for local users to leverage the details of memory usage to 1 conduct NULL...