Memory Management Issue in Linux Kernel Affecting Migration Procedures
CVE-2025-21861

5.5MEDIUM

Key Information:

Vendor
Linux
Status
Vendor
CVE Published:
12 March 2025

Summary

In the Linux kernel, a flaw exists in the memory migration process where a folio may be incorrectly added to the Least Recently Used (LRU) list during migration, potentially affecting the memcontrol group (memcg) functionality. This occurs when either the migration succeeds or fails, resulting in incorrect memory data references. The consequence of this error is that the system may experience unnecessary operational warnings and decreased efficiency in memory management. The correct flow is now implemented to avoid this issue during device migration.

Affected Version(s)

Linux 8763cb45ab967a92a5ee49e9c544c0f0ea90e2d6 < 3f9240d59e9a95d19f06120bfd1d0e681c6c0ac7

Linux 8763cb45ab967a92a5ee49e9c544c0f0ea90e2d6 < 069dd21ea8262204f94737878389c2815a054a9e

Linux 8763cb45ab967a92a5ee49e9c544c0f0ea90e2d6 < 41cddf83d8b00f29fd105e7a0777366edc69a5cf

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.