14 matches found
CVE-2026-53085
A flaw was found in the Linux kernel's Berkeley Packet Filter BPF subsystem. This use-after-free vulnerability occurs when the taskvma iterator reads task memory without properly acquiring a reference, allowing the memory structure to be freed concurrently while still in use. This can lead to...
CVE-2026-53085 bpf: fix mm lifecycle in open-coded task_vma iterator
In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded taskvma iterator The open-coded taskvma iterator reads task-mm locklessly and acquires mmapreadtrylock but never calls mmget. If the task exits concurrently, the mmstruct can be freed as it is...
CVE-2026-53085
The CVE-2026-53085 issue affects the Linux kernel BPF subsystem where the open-coded task_vma iterator reads task->mm locklessly and uses mmap_read_trylock() without taking an mm reference, risking use-after-free if the task exits concurrently. The patch reads task->mm with a trylock on all...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: fs/proc: taskmmu.c: Do not read mapcount for migration entries The syzbot reported the following bug: Kernel bug at include/linux/page-flags.h: 785 Invalid opcode: 0000 1 PREEMPT SMP KASAN CPU: 1; PID: 4392; Comm: syz-executor560...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-013351)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013351 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/proc: taskmmu.c: don't read mapcount for migration entry The syzbot reported the below BUG:...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000853)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000853 advisory. The pagemapopen function in fs/proc/taskmmu.c in the Linux kernel before 3.19.3, as used in Android 6.0.1 before 2016-03-01, allows local users to obtain sensitive...
CVE-2024-56779
The CVE-2024-56779 entry describes a Linux kernel vulnerability in nf sd4_open handling where concurrent opens could leak nfsd_openowner state, potentially leaving objects unfreed and triggering a warning when /proc/fs/nfsd/threads is echoed. The issue arises when two rpc_task instances race to o...
UBUNTU-CVE-2022-48802
In the Linux kernel, the following vulnerability has been resolved: fs/proc: taskmmu.c: don't read mapcount for migration entry The syzbot reported the below BUG: kernel BUG at include/linux/page-flags.h:785! invalid opcode: 0000 1 PREEMPT SMP KASAN CPU: 1 PID: 4392 Comm: syz-executor560 Not...
UBUNTU-CVE-2024-36943
In the Linux kernel, the following vulnerability has been resolved: fs/proc/taskmmu: fix loss of young/dirty bits during pagemap scan makeuffdwppte was previously doing: pte = ptepgetptep; ptepmodifyprotstartptep; pte = ptemkuffdwppte; ptepmodifyprotcommitptep, pte; But if another thread accessed...
Wind River VxWorks Security Vulnerability
Wind River VxWorks is an operating system from Wind River Systems, Inc. the industry-leading real-time operating system for building embedded devices and systems. A security vulnerability exists in Wind River VxWorks 7 version 22.09, version 23.03, which stems from a memory leak that does not fre...
kernel: s390: fix double free of GS and RI CBs on fork() failure
In the Linux kernel, the following vulnerability has been resolved: s390: fix double free of GS and RI CBs on fork failure The pointers for guarded storage and runtime instrumentation control blocks are stored in the threadstruct of the associated task. These pointers are initially copied on fork...
The vulnerability in the virtual file system /proc of Linux kernel allows a attacker to trigger a service failure.
The vulnerability in the virtual file system /proc of Linux operating systems is related to concurrent access to the memory page counter by the functions pagemapcount and splithugepage in the taskmmu.c module. Exploiting this vulnerability can allow an attacker to cause a service failure...
SUSE CVE-2023-1582
A race problem was found in fs/proc/taskmmu.c in the memory management sub-component in the Linux kernel. This issue may allow a local attacker with user privilege to cause a denial of service...
SUSE CVE-2011-3637
The mstop function in fs/proc/taskmmu.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service OOPS via vectors that trigger an mstart error...