Off-by-One Vulnerability in Linux Kernel Impacting Root Migration
CVE-2025-21813
Summary
A vulnerability exists within the Linux kernel where the children's counter validation during root migration is mismanaged. This leads to the potential for multiple top-level roots being active, which undermines the intended single idle migrator design. Specifically, if an old root is pre-accounted but not connected properly to the new root during creation, it can result in incorrect children counting. This oversight may manifest in system warnings regarding the processor state, indicating a need for vigilance in future configurations. Proper adjustments to the connection process have been implemented to mitigate this issue.
Affected Version(s)
Linux 12ead225b7996252a8bc1a49b03aad57c0794880
Linux b729cc1ec21a5899b7879ccfbe1786664928d597 < 6f449d8fa1808a7f9ee644866bbc079285dbefdd
Linux b729cc1ec21a5899b7879ccfbe1786664928d597 < 868c9037df626b3c245ee26a290a03ae1f9f58d3
References
Timeline
Vulnerability published
Vulnerability Reserved