Primary

Context

Linux Kernel Use-After-Free Vulnerability in cgroup Memory Accounting

Vulnerability

Patched

A use-after-free vulnerability has been identified in the Linux kernel's memory accounting cgroup feature. This issue arises from the improper management of memory pools, which can lead to a use-after-free condition. The vulnerability was introduced in version 6.14 and exists in the 'dmem' memory accounting cgroup. The problem occurs because a memory pool can still be referenced by a caller after its associated memory region has been unregistered, allowing for potential exploitation.

Impact

Exploitation of this vulnerability can lead to a use-after-free condition, causing a slab memory corruption issue. This type of vulnerability can often be exploited to execute arbitrary code or cause a denial-of-service condition by crashing the system.

Remediation

Users can upgrade to the latest stable version of the Linux kernel to address this vulnerability. The patch for this issue is included in the official Linux kernel repository.

Added: Feb 14, 2026, 5:26 PM

Updated: Feb 14, 2026, 5:26 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

7.5

exploitability

3.5

remediation

7.7

relevance

3.0

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

7.5

exploitability

3.5

remediation

7.7

relevance

3.0

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Use-After-Free Vulnerability in cgroup Memory Accounting

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating