27 matches found
Astra Linux – Vulnerability in Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: Binder: Fix for UAF in alloc-vma during race with munmap cmllamas: Cleaned up the forward port from commit 015ac18be7de “Binder: Fix for UAF in alloc-vma during race with munmap” in 5.10 stable. This was necessary in the mainline...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: android:binder: stop saving a pointer to the VMA. Do not record a pointer to a VMA outside of the mmaplock for later use. This is unsafe, and there are several failure scenarios after the recorded VMA pointer may be freed during...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013568)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013568 advisory. In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap cmllamas: clean forward port from commit...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010785)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010785 advisory. In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap cmllamas: clean forward port from commit...
SUSE CVE-2023-54157
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap cmllamas: clean forward port from commit 015ac18be7de "binder: fix UAF of alloc-vma in race with munmap" in 5.10 stable. It is needed in mainline after the revert of commit...
CVE-2023-54157
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap cmllamas: clean forward port from commit 015ac18be7de "binder: fix UAF of alloc-vma in race with munmap" in 5.10 stable. It is needed in mainline after the revert of commit...
CVE-2023-54157
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap cmllamas: clean forward port from commit 015ac18be7de "binder: fix UAF of alloc-vma in race with munmap" in 5.10 stable. It is needed in mainline after the revert of commit...
UBUNTU-CVE-2023-54157
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap cmllamas: clean forward port from commit 015ac18be7de "binder: fix UAF of alloc-vma in race with munmap" in 5.10 stable. It is needed in mainline after the revert of commit...
CVE-2023-54157
CVE-2023-54157 concerns a Linux kernel Binder use-after-free (UAF) of alloc->vma caused by a race with munmap. The root cause cited across connected documents is that access to alloc->vma in binder_update_page_range() could race with vm_area_free() in munmap due to a previous downgrade of t...
CVE-2023-54157 binder: fix UAF of alloc->vma in race with munmap()
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap cmllamas: clean forward port from commit 015ac18be7de "binder: fix UAF of alloc-vma in race with munmap" in 5.10 stable. It is needed in mainline after the revert of commit...
CVE-2023-54157 binder: fix UAF of alloc->vma in race with munmap()
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap cmllamas: clean forward port from commit 015ac18be7de "binder: fix UAF of alloc-vma in race with munmap" in 5.10 stable. It is needed in mainline after the revert of commit...
Linux Distros Unpatched Vulnerability : CVE-2023-54157
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - binder: fix UAF of alloc-vma in race with munmap cmllamas: clean forward port from commit 015ac18be7de binder: fix UAF of alloc-vma in race with munmap in 5.10...
EUVD-2022-55517
Malicious code in bioql PyPI...
EUVD-2022-55512
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2022-50338
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - binder: fix UAF of alloc-vma in race with munmap In commit 720c24192404 ANDROID: binder: change downwrite to downread binder assumed the mmap read lock is...
Linux Distros Unpatched Vulnerability : CVE-2022-50240
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - android: binder: stop saving a pointer to the VMA Do not record a pointer to a VMA outside of the mmaplock for later use. This is unsafe and there are a number ...
CVE-2022-50338
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2022-50338
The CVE-2022-50338 entry concerns a Linux kernel binder UAF in a race between binder_update_page_range() and munmap() that can access alloc->vma after it is freed. Affected component: kernel Binder in Linux kernel (stable branches 5.4 and 5.10). Root cause: improper locking around mmap/vma han...
CVE-2022-50338
...
CVE-2022-50240
CVE-2022-50240 concerns the Linux kernel Android binder subsystem. The issue arises from saving a pointer to a VMA outside of the mmap_lock, which could become stale or be freed, leading to fragile behavior in various failure paths. The documented fix changes the binder_alloc structure to record ...