Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000497)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000497 advisory. A flaw was found in the Linux Kernel in versions after 4.5-rc1 in the way mremap handled DAX Huge Pages. This flaw allows a local attacker with access to a DAX enabl...

Linux Distros Unpatched Vulnerability : CVE-2022-41222

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/mremap.c in the Linux kernel before 5.13.3 has a use-after-free via a stale TLB because an rmap lock is not held during a PUD move. CVE-2022-41222 Note that...

The vulnerability of the mm/mremap.c module in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the mm/mremap.c module in the Linux operating system is related to a single-shift error. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the mremap() function in Linux operating systems allows a hacker to cause a system failure or gain increased privileges.

The vulnerability of the mremap function in Linux operating systems is related to the use of memory after it is freed, as a result of the race condition that occurs when processing the memory-management structure rmap. Exploiting this vulnerability can allow an attacker to cause a service failure...

kernel: mm/mremap.c use-after-free vulnerability

A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code in how a race condition happens between rmap walk and mremap. This flaw allows a local user to crash or potentially escalate their privileges on the system...

SUSE CVE-2004-0077

The domremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the domunmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different...

A vulnerability exists in the implementation of the mremap() system call in the Linux operating system, which allows an attacker to gain access to the physical page.

The vulnerability in the implementation of the mremap system call in the Linux operating system exists due to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to gain access to the physical page...

UBUNTU-CVE-2018-18281

Since Linux kernel version 3.2, the mremap syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate removes entries from the pagetables of a task that is in the middle of mremap, a stale TLB entry can remain for a short time that permits access to a physical pag...

kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions

Integer overflow in the vmatoresize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service BUGON and system crash via a crafted mremap system call that expands a memory mapping...

PT-2010-2084

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.32.4 Description The issue allows local users to gain privileges or cause a denial of service by calling the mmap or mremap function. This is related to the do mremap function. Recommendations For versions...

kernel: insufficient range checks in fault handlers with mremap

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset...

Debian DSA-440-1 : linux-kernel-2.4.17-powerpc-apus - several vulnerabilities

Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the PowerPC/Apus kernel for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An...

Linux kernel mremap(2) system call does not properly check return value from do_munmap() function

Overview A vulnerability in the Linux mremap2 system call could allow an authenticated, local attacker to execute arbitrary code with root privileges. Description The Linux kernel uses a linked list of vitrual memory area VMA descriptors to reference valid regions of the page table for a given...

Linux Kernel 2.2.25/2.4.24/2.6.2 - 'mremap()' Local Privilege Escalation

/ mremap missing domunmap return check kernel exploit gcc -O3 -static -fomit-frame-pointer mremappte.c -o mremappte ./mremappte suid shell Vulnerable kernel versions are all include include include include include include include include include include include define strs s define xstrs strs //...

Kernel security update

New kernels are available for Slackware 9.1 and -current to fix a bounds-checking problem in the kernel's mremap call which could be used by a local attacker to gain root privileges. Please note that this is not the same issue as CAN-2003-0985 which was fixed in early January. The kernels in...

[Full-Disclosure] Second critical mremap() bug found in all Linux kernels

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Synopsis: Linux kernel domremap VMA limit local privilege escalation vulnerability Product: Linux kernel Version: 2.2 up to 2.2.25, 2.4 up to 2.4.24, 2.6 up to 2.6.2 Vendor: http://www.kernel.org/ URL:...

Linux Kernel 2.4.232.6.0 - do_mremap() Bound Checking Privilege Escalation

Linux Kernel 2.4.232.6.0 - domremap Bound Checking Privilege Escalation / Linux kernel mremap bound checking bug exploit. Bug found by Paul Starzetz Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY...

Linux Kernel 2.4.23/2.6.0 - 'do_mremap()' Bound Checking Privilege Escalation

/ Linux kernel mremap bound checking bug exploit. Bug found by Paul Starzetz Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING, PRINTING, DISTRIBUTION, MODIFICATION WITHOUT PERMISSIO...