CNNVD-202509-2205 Information

CNNVD ID

CNNVD-202509-2205

Related CVE

CVE-2023-53171

• CNNVD Published: 2025-09-15

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于vfio/type1容器在执行exec时未正确处理locked_vm计数，可能导致locked_vm下溢为极大无符号值。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. There is a security loophole in Linux Kernel, which stems from the fact that the vfio/type1 container did not properly process the locked vm count at the time of the exec, which could result in a significant unsigned spill.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linux

Published

2025-09-15

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/046eca5018f8a5dd1dc2cedf87fb5843b9ea3026 https://git.kernel.org/stable/c/5a271242716846cc016736fb76be2b40ee49b0c3 https://git.kernel.org/stable/c/a6b2aabe664098d5cf877ae0fd96459464a30e17 https://git.kernel.org/stable/c/b0790dff0760b7734cf0961f497ad64628ca550b https://git.kernel.org/stable/c/eafb81c50da899dd80b340c841277acc4a1945b7

Patch

https://www.kernel.org/