Primary

Context

Linux Kernel Use-After-Free Vulnerability in mshv_map_user_memory Error Path

Vulnerability

Patched

A use-after-free vulnerability has been identified in the Linux kernel's Hyper-V management service (mshv) component. This issue arises in the error handling path of the mshv_map_user_memory() function. When an error occurs, the function directly frees a memory region using vfree(), but this leaves the MMU notifier still registered. Later, when userspace unmaps the memory, the notifier accesses the freed region, leading to a use-after-free condition and a potential kernel panic. The vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability causes a use-after-free condition, which can lead to a kernel panic.

Remediation

The vulnerability has been fixed in the Linux kernel. Users can upgrade to the latest version to address this issue.

Added: Apr 3, 2026, 5:16 PM

Updated: Apr 3, 2026, 5:16 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

5.0

exploitability

4.0

remediation

7.7

relevance

5.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

5.0

exploitability

4.0

remediation

7.7

relevance

5.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Use-After-Free Vulnerability in mshv_map_user_memory Error Path

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating