CVE-2026-23077

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a use-after-free issue within the mm/vma subsystem, specifically related to merging Virtual Memory Areas (VMAs) after a memory remapping operation (mremap). The problem arises when merging a faulted VMA adjacent to an unfaulted VMA. The issue occurs in scenarios where the previous VMA is unfaulted, the next VMA is unfaulted, or both adjacent VMAs are unfaulted. The root cause is an incorrect handling of anonymous VMA state during the merge process, particularly when a new VMA is merged using mremap. The vulnerability was discovered through a syzbot report and addressed by ensuring that the dup anon vma() function is correctly invoked to handle anonymous VMA state in all relevant cases. The fix also includes cleanup of the vma expand() function and renaming of vma had uncowed parents() to vma is fork child() for clarity.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.