Lucene search
K

39 matches found

OSV
OSV
added 2025/02/12 1:27 p.m.9 views

CVE-2025-21696 mm: clear uffd-wp PTE/PMD state on mremap()

In the Linux kernel, the following vulnerability has been resolved: mm: clear uffd-wp PTE/PMD state on mremap When mremaping a memory region previously registered with userfaultfd as write-protected but without UFFDFEATUREEVENTREMAP, an inconsistency in flag clearing leads to a mismatch between t...

5.5CVSS6.1AI score0.00179EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2025/02/06 4:28 p.m.3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mm/vma: add giveuponoom option on modify/merge, use in uffd release Currently, if a VMA merge fails due to an OOM condition arising on commit merge or a failure to duplicate anonvma's, we report this so the caller can handle it...

7.6AI score0.00164EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/12 12:0 a.m.5 views

PT-2025-6932

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue arises when a memory region previously registered with userfaultfd as write-protected but without UFFD FEATURE EVENT REMAP is mremaped, leading to an inconsistency in flag...

5.5CVSS7.2AI score0.00179EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/01/10 12:21 a.m.2 views

SUSE CVE-2024-56628

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Add architecture specific hugepteclear When executing mm selftests runvmtests.sh, there is such an error: BUG: Bad page state in process uffd-unit-tests pfn:00000 page: refcount:0 mapcount:0 mapping:0000000000000000...

7.8CVSS7.4AI score0.00211EPSS
Exploits0References3
OSV
OSV
added 2024/12/27 3:15 p.m.2 views

UBUNTU-CVE-2024-56628

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Add architecture specific hugepteclear When executing mm selftests runvmtests.sh, there is such an error: BUG: Bad page state in process uffd-unit-tests pfn:00000 page: refcount:0 mapcount:0 mapping:0000000000000000...

7.8CVSS6.5AI score0.00211EPSS
Exploits0References7
NVD
NVD
added 2024/11/09 11:15 a.m.15 views

CVE-2024-50220

In the Linux kernel, the following vulnerability has been resolved: fork: do not invoke uffd on fork if error occurs Patch series "fork: do not expose incomplete mm on fork". During fork we may place the virtual memory address space into an inconsistent state before the fork operation is complete...

4.7CVSS0.00167EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/11/09 10:14 a.m.11 views

CVE-2024-50220

In the Linux kernel, the following vulnerability has been resolved: fork: do not invoke uffd on fork if error occurs Patch series "fork: do not expose incomplete mm on fork". During fork we may place the virtual memory address space into an inconsistent state before the fork operation is complete...

4.7CVSS5.6AI score0.00167EPSS
Exploits0
OSV
OSV
added 2024/11/09 10:14 a.m.10 views

CVE-2024-50220 fork: do not invoke uffd on fork if error occurs

In the Linux kernel, the following vulnerability has been resolved: fork: do not invoke uffd on fork if error occurs Patch series "fork: do not expose incomplete mm on fork". During fork we may place the virtual memory address space into an inconsistent state before the fork operation is complete...

4.7CVSS6.2AI score0.00167EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/11/09 10:14 a.m.12 views

CVE-2024-50220 fork: do not invoke uffd on fork if error occurs

In the Linux kernel, the following vulnerability has been resolved: fork: do not invoke uffd on fork if error occurs Patch series "fork: do not expose incomplete mm on fork". During fork we may place the virtual memory address space into an inconsistent state before the fork operation is complete...

0.00167EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/05/30 4:15 p.m.18 views

CVE-2024-36881

In the Linux kernel, the following vulnerability has been resolved: mm/userfaultfd: reset ptes when close for wr-protected ones Userfaultfd unregister includes a step to remove wr-protect bits from all the relevant pgtable entries, but that only covered an explicit UFFDIOUNREGISTER ioctl, not a...

5.5CVSS6.4AI score0.00239EPSS
Exploits0References10
Cvelist
Cvelist
added 2024/05/30 3:28 p.m.25 views

CVE-2024-36881 mm/userfaultfd: reset ptes when close() for wr-protected ones

In the Linux kernel, the following vulnerability has been resolved: mm/userfaultfd: reset ptes when close for wr-protected ones Userfaultfd unregister includes a step to remove wr-protect bits from all the relevant pgtable entries, but that only covered an explicit UFFDIOUNREGISTER ioctl, not a...

6.4AI score0.00239EPSS
Exploits0References3
NVD
NVD
added 2024/02/28 9:15 a.m.13 views

CVE-2021-46988

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: release page in error path to avoid BUGON Consider the following sequence of events: 1. Userspace issues a UFFD ioctl, which ends up calling into shmemmfillatomicpte. We successfully account the blocks, we...

5.5CVSS7.3AI score0.0024EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2024/02/28 9:15 a.m.18 views

CVE-2021-46988

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: release page in error path to avoid BUGON Consider the following sequence of events: 1. Userspace issues a UFFD ioctl, which ends up calling into shmemmfillatomicpte. We successfully account the blocks, we...

5.5CVSS6.4AI score0.0024EPSS
Exploits0References9
OSV
OSV
added 2023/02/13 5:20 p.m.4 views

GSD-2023-1001860 mm/uffd: fix pte marker when fork() without fork event

mm/uffd: fix pte marker when fork without fork event This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/11/14 6:48 p.m.14 views

GSD-2022-1006900 mm/uffd: fix warning without PTE_MARKER_UFFD_WP compiled in

mm/uffd: fix warning without PTEMARKERUFFDWP compiled in This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...

7.2AI score
Exploits0
NVD
NVD
added 2022/02/16 10:15 p.m.35 views

CVE-2022-23636

Wasmtime is an open source runtime for WebAssembly & WASI. Prior to versions 0.34.1 and 0.33.1, there exists a bug in the pooling instance allocator in Wasmtime's runtime where a failure to instantiate an instance for a module that defines an externref global will result in an invalid drop of a...

8.1CVSS0.0076EPSS
Exploits1References2
Prion
Prion
added 2022/02/16 10:15 p.m.11 views

Default configuration

Wasmtime is an open source runtime for WebAssembly & WASI. Prior to versions 0.34.1 and 0.33.1, there exists a bug in the pooling instance allocator in Wasmtime's runtime where a failure to instantiate an instance for a module that defines an externref global will result in an invalid drop of a...

7.1CVSS8AI score0.0076EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/02/16 10:0 p.m.61 views

CVE-2022-23636 Invalid drop of partially-initialized instances in wasmtime

Wasmtime is an open source runtime for WebAssembly & WASI. Prior to versions 0.34.1 and 0.33.1, there exists a bug in the pooling instance allocator in Wasmtime's runtime where a failure to instantiate an instance for a module that defines an externref global will result in an invalid drop of a...

5.1CVSS8.2AI score0.0076EPSS
Exploits1References2
OSV
OSV
added 2021/07/20 7:15 a.m.5 views

UBUNTU-CVE-2019-25050

netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4getatt called from nc4getatttc and ncgetatttext and in uffdcleanup called from netCDFDataset::netCDFDataset and netCDFDataset::netCDFDataset...

7.8CVSS7.5AI score0.0035EPSS
Exploits0References8
Rows per page
Query Builder