Memory Management Issue in Linux Kernel Affecting Migration Procedures
CVE-2025-21861

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 12 March 2025

Summary

In the Linux kernel, a flaw exists in the memory migration process where a folio may be incorrectly added to the Least Recently Used (LRU) list during migration, potentially affecting the memcontrol group (memcg) functionality. This occurs when either the migration succeeds or fails, resulting in incorrect memory data references. The consequence of this error is that the system may experience unnecessary operational warnings and decreased efficiency in memory management. The correct flow is now implemented to avoid this issue during device migration.

Affected Version(s)

Linux 8763cb45ab967a92a5ee49e9c544c0f0ea90e2d6 < 3f9240d59e9a95d19f06120bfd1d0e681c6c0ac7

Linux 8763cb45ab967a92a5ee49e9c544c0f0ea90e2d6 < 069dd21ea8262204f94737878389c2815a054a9e

Linux 8763cb45ab967a92a5ee49e9c544c0f0ea90e2d6 < 41cddf83d8b00f29fd105e7a0777366edc69a5cf

References

https://git.kernel.org/stable/c/3f9240d59e9a95d19f06120bf...

https://git.kernel.org/stable/c/069dd21ea8262204f94737878...

https://git.kernel.org/stable/c/41cddf83d8b00f29fd105e7a0...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 12, 2025
Vulnerability Reserved
Dec 29, 2024