Linux Kernel Page Table Vulnerability in Process Management
CVE-2025-38085
What is CVE-2025-38085?
A race condition has been identified in the Linux kernel's page table management, particularly involving the huge_pmd_unshare() function. This vulnerability arises when a reference on a shared page table is dropped unexpectedly, allowing it to be utilized by another process. Consequently, unrelated virtual memory areas may inadvertently interact, resulting in potential inconsistencies. While there is no immediate threat of kernel memory corruption, the vulnerability introduces significant unpredictability during concurrent memory access operations. A fix has been implemented to address this issue by ensuring an explicit broadcast during page table removal.
Affected Version(s)
Linux 39dde65c9940c97fcd178a3d2b1c57ed8b7b68aa < 952596b08c74e8fe9e2883d1dc8a8f54a37384ec
Linux 39dde65c9940c97fcd178a3d2b1c57ed8b7b68aa
Linux 39dde65c9940c97fcd178a3d2b1c57ed8b7b68aa