CVE-2026-46113

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp-gfn plus the SPTE index. This assumption breaks for shadow paging if the guest page tables are modifie...

UBUNTU-CVE-2026-46113

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp-gfn plus the SPTE index. This assumption breaks for shadow paging if the guest page tables are modifie...

CVE-2026-46113

CVE-2026-46113 (Linux kernel KVM x86 shadow paging use-after-free) is a resolved vulnerability in the KVM shadow paging path. The issue arises when the shadow MMU computes GFNs for direct shadow pages using sp->gfn plus the SPTE index and guest page-table modifications between VM entries can c...

EUVD-2026-32872

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The shadow MMU computes GFNs for direct shadow pages using sp-gfn plus the SPTE index. This assumption breaks for shadow paging if the guest page tables are modifie...

Astra Linux - уязвимость в linux-5.10, linux

The mm/rmap.c file in the Linux kernel before version 5.19.7 contains a use-after-free issue related to the double reuse of the leaf anonvma structure...

Astra Linux - уязвимость в linux-5.15, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: ice: arfs: fixed a use-after-free when freeing @rxcpurmap The CI testing bots triggered the following error message: 718.203054 BUG: KASAN: use-after-free in freeirqcpurmap+0x53/0x80 718.206349 Read of size 4 at addr...

Astra Linux - уязвимость в linux-6.1, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: The unshare of page tables occurs during VMA splitting, not before. Currently, splitvma triggers the unshare of hugetlb page tables through vmops-maysplit. This happens before the VMA lock and rmap locks are taken –...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Immediately reset the MMU context when the SMM flag is cleared The MMU context should be immediately reset when the SMM flag of the vCPU is cleared, so that the SMM flag in the MMU context is always synchronized with th...

SUSE CVE-2026-31648

In the Linux kernel, the following vulnerability has been resolved: mm: filemap: fix nrpages calculation overflow in filemapmappages When running stress-ng on my Arm64 machine with v7.0-rc3 kernel, I encountered some very strange crash issues showing up as "Bad page state": " 734.496287 BUG: Bad...

PT-2026-35000

In the Linux kernel, the following vulnerability has been resolved: mm: filemap: fix nr pages calculation overflow in filemap map pages When running stress-ng on my Arm64 machine with v7.0-rc3 kernel, I encountered some very strange crash issues showing up as "Bad page state": " 734.496287 BUG: B...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013163)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013163 advisory. In the Linux kernel, the following vulnerability has been resolved: lib: cpurmap: Avoid use after free on rmap-obj array entries When calling irqsetaffinitynotifier...

UBUNTU-CVE-2026-31398

In the Linux kernel, the following vulnerability has been resolved: mm/rmap: fix incorrect pte restoration for lazyfree folios We batch unmap anonymous lazyfree folios by foliounmapptebatch. If the batch has a mix of writable and non-writable bits, we may end up setting the entire batch writable...

CVE-2026-4737

Use After Free vulnerability in No-Chicken Echo-Mate ‎SDK/rv1106-sdk/sysdrv/source/kernel/mm modules. This vulnerability is associated with program files rmap.C‎. This issue affects Echo-Mate: before V250329...

EUVD-2026-14704

Use After Free vulnerability in No-Chicken Echo-Mate ‎SDK/rv1106-sdk/sysdrv/source/kernel/mm modules. This vulnerability is associated with program files rmap.C‎. This issue affects Echo-Mate: before V250329...

CVE-2026-4737 Use-After-Free Vulnerability in No-Chicken/Echo-Mate

Use After Free vulnerability in No-Chicken Echo-Mate ‎SDK/rv1106-sdk/sysdrv/source/kernel/mm modules. This vulnerability is associated with program files rmap.C‎. This issue affects Echo-Mate: before V250329...

CVE-2026-4737

CVE-2026-4737 is a Use-After-Free in No-Chicken Echo-Mate affecting the SDK/rv1106-sdk/sysdrv/source/kernel/mm modules, specifically in rmap.C. Affected: Echo-Mate prior to version V250329. Root cause: memory management issue in the mm components. CVSS metrics indicate LOCAL attack vector, HIGH i...

PT-2026-27315

Name of the Vulnerable Software and Affected Versions No-Chicken Echo-Mate versions prior to V250329 Description A Use After Free issue exists in No-Chicken Echo-Mate within the rmap.C program files, specifically in the mm modules of the SDK/rv1106-sdk/sysdrv/source/kernel directory. This conditi...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005690)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005690 advisory. In the Linux kernel, the following vulnerability has been resolved: lib: cpurmap: Avoid use after free on rmap-obj array entries When calling irqsetaffinitynotifier...

CLSA-2026-1771239384 kernel: Fix of 75 CVEs

net/sched: Make cakeenqueue return NETXMITCN when past bufferlimit CVE-2025-39766 - NFSD: Avoid calling OPDESC with ops-opnum == OPILLEGAL CVE-2023-53680 - scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow CVE-2023-53676 - KVM: x86: use arrayindexnospec with indices that come from...

PT-2026-6167

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description The Linux kernel contains a deadlock issue related to lock ordering within hugetlb file folios during page migration. Specifically, a deadlock can occur when one task holds a folio lock...