1253 matches found
PT-2024-14721
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.2.0-rc3-syzkaller-00376-g7c6984405241 Description The issue is related to a deadlock that can occur when using the btrfs file system. Specifically, it happens when the fiemap code triggers a fault while accessi...
PT-2025-54163
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel where the zero page can be corrupted when using dm-flakey with corrupt bio writes enabled. This corruption occurs because the blkdev issue zero pages...
GSD-2023-1000260 libbpf: Handle size overflow for ringbuf mmap
libbpf: Handle size overflow for ringbuf mmap This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.158 by commit...
GSD-2023-1000190 libbpf: Handle size overflow for ringbuf mmap
libbpf: Handle size overflow for ringbuf mmap This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.82 by commit...
GSD-2023-1000101 libbpf: Handle size overflow for ringbuf mmap
libbpf: Handle size overflow for ringbuf mmap This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.12 by commit...
PT-2023-33896 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: A potential issue exists in the privcmd ioctl mmap resource function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...
PT-2023-33267 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.8 through v5.15.81 Description: The issue is related to a handle size overflow for ringbuf mmap in libbpf. It was introduced in version v5.8 and fixed in version v5.15.82. The actual impact and attack plausibility hav...
PT-2024-11887 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A size overflow issue has been identified in the Linux kernel, specifically in the libbpf component when handling ringbuf mmap. The maximum size of ringbuf is 2GB on x86-64 hosts, whic...
PT-2023-33178 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: libbpf versions prior to v6.0.12 Description: The issue is related to a handle size overflow for ringbuf mmap. It was introduced in Linux Kernel version v5.8 and fixed in version v6.0.12. The actual impact and attack plausibility have not yet...
PT-2023-33337 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.158 Description: The issue concerns a handle size overflow for ringbuf mmap. It was introduced in version v5.8 and fixed in Linux Kernel version v5.10.158. The actual impact and attack plausibility have no...
PT-2025-13311
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the Linux kernel related to the -anon vma attachment to the VMA. The issue arises when collapse and free pmd requires the -anon vma to be locked, but the lock ...
kernel: net/packet: slab-out-of-bounds access in packet_recvmsg()
An out-of-bounds access issue was found in the Linux kernel networking subsystem in the way raw packet sockets AFPACKET used PACKETCOPYTHRESH and mmap operations. A local attacker with CAPNETRAW capability could use this flaw to trigger a buffer overflow resulting in a system crash or privilege...
kernel: ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and mmap_lock
In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix potential AB/BA lock with buffermutex and mmaplock syzbot caught a potential deadlock between the PCM runtime-buffermutex and the mm-mmaplock. It was brought by the recent fix to cover the racy read/write and other...
CVE-2022-20369
An out-of-bounds write flaw was found in the Linux kernel’s UVC camera and similar device driver code due to improper input validation in the v4l2-mem2mem.c source code in how a user calls ioctl VIDIOCQUERYBUF with mmap. This issue occurs if the capture buffer mapped directly from the userspace...
CVE-2022-42464
OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have a Kernel memory pool override vulnerability in /dev/mmzuserdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel...
CVE-2022-42464
OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have a Kernel memory pool override vulnerability in /dev/mmzuserdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel...
Design/Logic Flaw
OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have a Kernel memory pool override vulnerability in /dev/mmzuserdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel...
CVE-2022-42464 Kernel memory pool override in /dev/mmz_userdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel pointer, which could be used in furth ...
OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have a Kernel memory pool override vulnerability in /dev/mmzuserdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel...
PT-2022-33686 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.15.61 through v5.15.63 Description: The issue is related to missing mmap lock calls in the binder alloc function when using the VMA. The actual impact and attack plausibility have not yet been proven. Recommendations:...
CVE-2022-0175
A flaw was found in the VirGL virtual OpenGL renderer virglrenderer. The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the host, possibly leading t...