9 matches found
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000574)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000574 advisory. The trytounmapcluster function in mm/rmap.c in the Linux kernel before 3.14.3 does not properly consider which pages must be locked, which allows local users to caus...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992551)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992551 advisory. In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: fix error exit of privcmdioctldmop The error exit of privcmdioctldmop is calling...
SUSE CVE-2023-53777
In the Linux kernel, the following vulnerability has been resolved: erofs: kill hooked chains to avoid loops on deduplicated compressed images After heavily stressing EROFS with several images which include a hand-crafted image of repeated patterns for more than 46 days, I found two chains could ...
CVE-2022-49989
In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: fix error exit of privcmdioctldmop The error exit of privcmdioctldmop is calling unlockpages potentially with pages being NULL, leading to a NULL dereference. Additionally lockpages doesn't check for pinuserpagesfast...
CVE-2022-49989
CVE-2022-49989 concerns the Linux kernel’s xen/privcmd code. The vulnerability stems from: (1) error exit handling in privcmd_ioctl_dm_op() calling unlock_pages() with NULL pages, risking a NULL dereference, and (2) lock_pages() not verifying pin_user_pages_fast() success, potentially leaving som...
CVE-2022-49989 xen/privcmd: fix error exit of privcmd_ioctl_dm_op()
In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: fix error exit of privcmdioctldmop The error exit of privcmdioctldmop is calling unlockpages potentially with pages being NULL, leading to a NULL dereference. Additionally lockpages doesn't check for pinuserpagesfast...
Integer Overflows
The kernel packages contain the Linux kernel, the core of any Linux operating system. A NULL pointer dereference flaw was found in the way the Linux kernel's Stream Control Transmission Protocol SCTP implementation handled simultaneous connections between the same hosts. A remote attacker could u...
Kernel: mm: try_to_unmap_cluster() should lock_page() before mlocking
It was found that the trytounmapcluster function in the Linux kernel's Memory Managment subsystem did not properly handle page locking in certain cases, which could potentially trigger the BUGON macro in the mlockvmapage function. A local, unprivileged user could use this flaw to crash the system...
“Cocktail”therapy to deal with the variety of Trojan hybrid intrusion-vulnerability warning-the black bar safety net
Here is a quote of the“cocktail”therapy is a medical term, refers to the physician while using the a variety of anti-viral drugs to deal with AIDS. For a computer virus to a single tool in particular is very well-known tool is very easy to be viral as against the target without losing effect, it'...