19 matches found
Astra Linux – Vulnerability in Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: uaccess: A integer overflow has been fixed in the accessok function. On three architectures, the end of a user’s access is checked against the address limit, without considering the possibility of an overflow. Passing a negative...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000336)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000336 advisory. In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enablesacfuaccess in...
Linux Distros Unpatched Vulnerability : CVE-2020-11884
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enablesacfuaccess ...
DEBIAN-CVE-2023-52995
In the Linux kernel, the following vulnerability has been resolved: riscv/kprobe: Fix instruction simulation of JALR Set kprobe at 'jalr 1140ra' of vfswrite results in the following crash: 32.092235 Unable to handle kernel access to user memory without uaccess routines at virtual address...
SUSE CVE-2022-49289
In the Linux kernel, the following vulnerability has been resolved: uaccess: fix integer overflow on accessok Three architectures check the end of a user access against the address limit without taking a possible overflow into account. Passing a negative length or another overflow in here returns...
CVE-2024-36953
In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgicv2parseattr vgicv2parseattr is responsible for finding the vCPU that matches the user-provided CPUID, which of course may not be valid. If the ID is invalid, kvmgetvcpubyid...
GSD-2022-1003166 x86/uaccess: Implement macros for CMPXCHG on user addresses
x86/uaccess: Implement macros for CMPXCHG on user addresses This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.13 by commit...
GSD-2022-1002852 x86/uaccess: Implement macros for CMPXCHG on user addresses
x86/uaccess: Implement macros for CMPXCHG on user addresses This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.2 by commit...
GSD-2022-1001940 uaccess: fix integer overflow on access_ok()
uaccess: fix integer overflow on accessok This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.32 by commit...
GSD-2022-1001636 uaccess: fix integer overflow on access_ok()
uaccess: fix integer overflow on accessok This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.18 by commit...
GSD-2022-1001328 uaccess: fix integer overflow on access_ok()
uaccess: fix integer overflow on accessok This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.1 by commit...
GSD-2021-1002539 arm64: uaccess: avoid blocking within critical sections
arm64: uaccess: avoid blocking within critical sections This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.6 by commit...
The vulnerability of the enable_sacf_uaccess function in Linux operating system kernels, which allows a hacker to trigger a service failure
The vulnerability of the enablesacfuaccess function in Linux operating system kernels is related to errors during multi-threaded tasks race conditions. Exploiting this vulnerability can allow an attacker to cause service failures...
DEBIAN-CVE-2020-11884
In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enablesacfuaccess in arch/s390/lib/uaccess.c that fails to protect against a concurrent page table upgrade, aka CID-3f777e19d171. A crash could also occur...
UBUNTU-CVE-2020-11884
In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enablesacfuaccess in arch/s390/lib/uaccess.c that fails to protect against a concurrent page table upgrade, aka CID-3f777e19d171. A crash could also occur...
PT-2020-3493 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 4.19 through 5.6.7 Description: The issue is related to a race condition in the Linux kernel, specifically in the enable sacf uaccess function, which can lead to code execution. This occurs because the function fails to...
Linux kernel elevation of privilege vulnerability (CNVD-2016-11670)
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the getuserasmex macro in the arch/x86/include/asm/uaccess.h file in Linux kernel versions 4.4.22 through 4.4.28. A local attacker can explo...
UBUNTU-CVE-2016-9178
The getuserasmex macro in arch/x86/include/asm/uaccess.h in the Linux kernel before 4.7.5 does not initialize a certain integer variable, which allows local users to obtain sensitive information from kernel stack memory by triggering failure of a getuserex call...
CVE-2006-5174
The copyfromuser function in the uaccess code in Linux kernel 2.6 before 2.6.19-rc1, when running on s390, does not properly clear a kernel buffer, which allows local user space programs to read portions of kernel memory by "appending to a file from a bad address," which triggers a fault that...