7 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-53084
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: return VMA snapshot from taskvma iterator Holding the per-VMA lock across the BPF program body creates a lock ordering problem when helpers acquire locks...
CVE-2026-53084
In the Linux kernel, the following vulnerability has been resolved: bpf: return VMA snapshot from taskvma iterator Holding the per-VMA lock across the BPF program body creates a lock ordering problem when helpers acquire locks that depend on mmaplock: vmlock - irwsem - mmaplock - vmlock Snapshot...
CVE-2026-53084
The Linux kernel CVE-2026-53084 is addressed by changing the VMA snapshot handling in the task_vma iterator used by BPF. The per-VMA lock is no longer held across the BPF program body; instead, the VMA is snapshot via memcpy() under the lock in _next(), and the lock is dropped before returning. T...
CVE-2023-1249
A use-after-free flaw was found in the Linux kernel’s core dump subsystem. This flaw allows a local user to crash the system. Only if patch 390031c94211 "coredump: Use the vma snapshot in fillfilesnote" not applied yet, then kernel could be affected...
GSD-2022-1002019 coredump: Use the vma snapshot in fill_files_note
coredump: Use the vma snapshot in fillfilesnote This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.110 by commit...
GSD-2022-1001744 coredump: Use the vma snapshot in fill_files_note
coredump: Use the vma snapshot in fillfilesnote This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.33 by commit...
GSD-2022-1001089 coredump: Use the vma snapshot in fill_files_note
coredump: Use the vma snapshot in fillfilesnote This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.2 by commit...