Lucene search
K

695 matches found

Cvelist
Cvelist
added 2026/04/02 11:40 a.m.26 views

CVE-2026-23416 mm/mseal: update VMA end correctly on merge

In the Linux kernel, the following vulnerability has been resolved: mm/mseal: update VMA end correctly on merge Previously we stored the end of the current VMA in currend, and then upon iterating to the next VMA updated currstart to currend to advance to the next VMA. However, this doesn't take...

0.00218EPSS
Exploits1References3
CVE
CVE
added 2026/04/02 11:40 a.m.40 views

CVE-2026-23416

The CVE-2026-23416 issue affects the Linux kernel (mm/mseal) where vm_area_struct end handling could become stale during VMA merges. The root cause is curr_end not staying in sync when a VMA is updated via vma_modify_flags(), leading to an incorrect curr_start on the next iteration. The fix uncon...

5.5CVSS5.7AI score0.00218EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.2 views

PT-2026-29722

In the Linux kernel, the following vulnerability has been resolved: futex: Fix UaF between futex key to node opt and vma replace policy During futex key to node opt execution, vma-vm policy is read under speculative mmap lock and RCU. Concurrently, mbind may call vma replace policy which frees th...

5.8AI score0.00124EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.6 views

PT-2026-29723

In the Linux kernel, the following vulnerability has been resolved: mm/mseal: update VMA end correctly on merge Previously we stored the end of the current VMA in curr end, and then upon iterating to the next VMA updated curr start to curr end to advance to the next VMA. However, this doesn't tak...

5.7AI score0.00218EPSS
Exploits1References4
NVD
NVD
added 2026/03/25 11:16 a.m.4 views

CVE-2026-23380

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix WARNON in tracingbuffersmmapclose When a process forks, the child process copies the parent's VMAs but the usermapped reference count is not incremented. As a result, when both the parent and child processes exit,...

5.5CVSS0.00114EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/02 12:0 a.m.8 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporated in the United States. There are security vulnerabilities in Qualcomm Chipsets. These vulnerabilities stem from shared VM references that allow HLOS access to bootloaders and certificate chains, potentially leading to...

7.1CVSS5.8AI score0.0007EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/02/18 2:21 p.m.7 views

CVE-2025-71228

Removed by vendor...

5.3AI score0.00024EPSS
Exploits0
Cvelist
Cvelist
added 2026/02/18 2:21 p.m.24 views

CVE-2025-71228

...

0.00024EPSS
Exploits0
CVE
CVE
added 2026/02/18 2:21 p.m.19 views

CVE-2025-71228

In the Linux kernel for LoongArch (32-bit), CVE-2025-71228 arises from an incorrect protection_map for VM_NONE/VM_SHARED. _PAGE_PROTNONE is treated as 0 on 32-bit, causing a Virtual Memory area to be VM_NONE or VM_SHARED and result in non-present pages, leading to a kernel Oops. The fix replaces ...

5.2AI score0.00024EPSS
Exploits0
OSV
OSV
added 2026/02/18 2:21 p.m.9 views

CVE-2025-71228 LoongArch: Set correct protection_map[] for VM_NONE/VM_SHARED

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Set correct protectionmap for VMNONE/VMSHARED For 32BIT platform PAGEPROTNONE is 0, so set a VMA to be VMNONE or VMSHARED will make pages non-present, then cause Oops with kernel page fault. Fix it by set correct...

5.2AI score0.00024EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/02/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-71228

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LoongArch: Set correct protectionmap for VMNONE/VMSHARED For 32BIT platform PAGEPROTNONE is 0, so set a VMA to be VMNONE or VMSHARED will make pages non-present...

6AI score0.00024EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/02/16 12:25 a.m.7 views

SUSE CVE-2026-23199

In the Linux kernel, the following vulnerability has been resolved: procfs: avoid fetching build ID while holding VMA lock Fix PROCMAPQUERY to fetch optional build ID only after dropping mmaplock or per-VMA lock, whichever was used to lock VMA under question, to avoid deadlock reported by syzbot:...

5.5CVSS5.2AI score0.0009EPSS
Exploits0References3
CVE
CVE
added 2026/02/14 4:27 p.m.25 views

CVE-2026-23199

CVE-2026-23199 : In the Linux kernel, procfs could deadlock by fetching the optional build ID while holding the VMA lock. The fix changes PROCMAP_QUERY to obtain the optional build ID only after dropping mmap_lock or after acquiring the per-VMA lock used to guard the VMA, preventing the cross-loc...

5.5CVSS5.2AI score0.0009EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/02/14 4:27 p.m.23 views

CVE-2026-23199 procfs: avoid fetching build ID while holding VMA lock

In the Linux kernel, the following vulnerability has been resolved: procfs: avoid fetching build ID while holding VMA lock Fix PROCMAPQUERY to fetch optional build ID only after dropping mmaplock or per-VMA lock, whichever was used to lock VMA under question, to avoid deadlock reported by syzbot:...

0.0009EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from procfs acquiring a build ID when holding a VMA lock, potentially leading to deadlocks...

5.5CVSS5.8AI score0.0009EPSS
Exploits0References3
CVE
CVE
added 2026/02/04 4:8 p.m.20 views

CVE-2026-23077

CVE-2026-23077 concerns a Linux kernel mm/vma anon_vma UAF during mremap() of faulted adjacent VMAs. The issue spanned three adjacency cases (prev/next both unfaulted, and combos with faulted adjacent), and the patch series fixes incorrect anon_vma merging and missing fork checks, including self-...

7.8CVSS5.3AI score0.00134EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/04 4:8 p.m.4 views

CVE-2026-23077

In the Linux kernel, the following vulnerability has been resolved: mm/vma: fix anonvma UAF on mremap faulted, unfaulted merge Patch series "mm/vma: fix anonvma UAF on mremap faulted, unfaulted merge", v2. Commit 879bca0a2c4f "mm/vma: fix incorrectly disallowed anonymous VMA merges" introduced th...

5.3AI score0.00134EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.8 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005090)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005090 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Fix Virtual Memory mapping boundaries calculation Calculating the size of the mappe...

5.5CVSS6.6AI score0.00256EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2026/01/26 12:0 a.m.5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004949)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004949 advisory. In the Linux kernel, the following vulnerability has been resolved: perf/core: Prevent VMA split of buffer mappings The perf mmap code is careful about mmap'ing the...

7.8CVSS6.6AI score0.00358EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38084)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38084 advisory. - In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: unshare page tables during...

5.5CVSS5.3AI score0.00152EPSS
Exploits0References2
Rows per page
Query Builder