Primary

Context

Linux Kernel Null Dereference Vulnerability in /proc/pid/smaps_rollup

Vulnerability

Patched

A null dereference vulnerability has been introduced in the Linux kernel's handling of the /proc/pid/smaps_rollup file. This issue arises when there are no virtual memory areas (VMAs) in the task, leading to a crash. The vulnerability was introduced in a previous commit that changed the way memory mapping information is processed.

Impact

Exploitation of this vulnerability leads to a null pointer dereference, causing a kernel crash.

Remediation

Users can upgrade to the latest version of the Linux kernel to address this vulnerability.

Added: Sep 18, 2025, 4:01 PM

Updated: Sep 18, 2025, 4:01 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Null Dereference Vulnerability in /proc/pid/smaps_rollup

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating