CVE-2026-46268

CVE-2026-46268 details a Linux kernel issue in PCI/P2PDMA: p2pmem_alloc_mmap() used VM_WARN_ON_ONCE_PAGE(!page_ref_count(page)) after p2pdma page refcount was changed from 1 to 0. The fix changes the assertion to use page_ref_count(page) instead of !page_ref_count(page). The warning is surfaced w...

PT-2026-46031

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the PCI/P2PDMA component where the p2pmem alloc mmap function triggers a warning condition when CONFIG DEBUG VM is enabled. This occurs because the function uses an...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ubifs: A fix was made to increment the reference count of a page once it is set as private. The MM structure defines a rule 1 very clearly: once a page is marked with the PGprivate flag, the reference count of that page should be...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000254)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000254 advisory. The Linux kernel before 5.1-rc5 allows page-refcount reference count overflow, with resultant use-after- free issues, if about 140 GiB of RAM exists. This is related...

CVE-2022-50483

CVE-2022-50483 affects the Linux kernel ENETC path handling XDP redirects. The vulnerability arises from race conditions and incorrect page reference counting in enetc_flip_rx_buff() around xdp_do_redirect() failure, which could cause buffer leaks when processing RX descriptors. The fixed approac...

PT-2025-40670

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the enetc network driver related to buffer management during XDP redirect operations. Specifically, the issue arises from improper handling of...

CVE-2025-58144 Arm issues with page refcounting

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. There are two issues related to the mapping of pages belonging to other domains: For one, an assertion is wrong there, where the case actually needs handling. A NULL...

Linux Distros Unpatched Vulnerability : CVE-2019-11487

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Linux kernel before 5.1-rc5 allows page-refcount reference count overflow, with resultant use-after- free issues, if about 140 GiB of RAM exists. This is...

DEBIAN-CVE-2021-47635

In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix to add refcount once page is set private MM defined the rule 1 very clearly that once page was set with PGprivate flag, we should increment the refcount in that page, also main flows like pageout, migratepage will assu...

CVE-2024-35826

In the Linux kernel, the following vulnerability has been resolved: block: Fix page refcounts for unaligned buffers in bioreleasepages Fix an incorrect number of pages being released for buffers that do not start at the beginning of a page...

CVE-2021-46911

In the Linux kernel, the following vulnerability has been resolved: chktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take txctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle...

Spoofing

In the Linux kernel, the following vulnerability has been resolved: chktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take txctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle...

CVE-2021-46911

In the Linux kernel, the following vulnerability has been resolved: chktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take txctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle...

CVE-2021-46911 ch_ktls: Fix kernel panic

In the Linux kernel, the following vulnerability has been resolved: chktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take txctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle...

CVE-2021-46911 ch_ktls: Fix kernel panic

In the Linux kernel, the following vulnerability has been resolved: chktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take txctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle...

PT-2024-2978 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the ch ktls component of the Linux kernel and is caused by the lack of synchronization locking. This can lead to a kernel panic when taking page refcount is not...

kernel security and bug fix update

2.6.32-754.35.1.OL6 - Update genkey bug 25599697 2.6.32-754.35.1 - ata libata: fix NULL sdev dereference race in atapiqccomplete Kenneth Yin 1876296 2.6.32-754.34.1 - mm mm: prevent getuserpages from overflowing page refcount Aristeu Rozanski 1705003 - mm mm/hugetlb.c: getuserpages ignores certai...

Unbreakable Enterprise kernel security update

4.14.35-1902.306.2 - rename kABI whitelists to lockedlists Dan Duval Orabug: 31783150 - sched/fair: Fix low cpu usage with high throttling by removing expiration of cpu-local slices Dave Chiluk Orabug: 31350999 CVE-2019-19922 - sched/fair: Fix throttlelist starvation with low CFS quota Phil Auld...

Linux CoW Incorrect Access Grant Exploit

A Linux copy-on-write issue can wrongly grant write access. Linux: CoW can wrongly grant write access because of pinned references or THP bug I've stumbled over two ways in which copy-on-write of anonymous memory after fork is currently broken: Page references through the page refcount and a bug ...

kernel: memory leak when merging buffers in SCSI IO vectors

It was found that in the Linux kernel through v4.14-rc5, biomapuseriov and biounmapuser in 'block/bio.c' do unbalanced pages refcounting if IO vector has small consecutive buffers belonging to the same page. bioaddpcpage merges them into one, but the page reference is never dropped, causing a...