Linux Kernel Vulnerability Impacts Memory Management Functionality
CVE-2025-38207

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 July 2025

What is CVE-2025-38207?

A vulnerability in the Linux kernel's memory management can lead to improper handling of user space probes (uprobes) when expanding virtual memory areas (VMAs). This bug arises during the remapping process where the page table entries (PTEs) for uprobe pages can be inadvertently overwritten. Specifically, during the remapping steps, unnecessary adjustments can cause orphaned uprobe PTEs, potentially leading to memory inconsistencies and exploitation opportunities. This issue was identified with specific conditions involving memory mapping operations and necessitates immediate patches to stabilize kernel functionality.

Affected Version(s)

Linux 2b144498350860b6ee9dc57ff27a93ad488de5dc < 58b83b9a9a929611a2a2e7d88f45cb0d786b7ee0

Linux 2b144498350860b6ee9dc57ff27a93ad488de5dc < 2b12d06c37fd3a394376f42f026a7478d826ed63

Linux 3.5

References

https://git.kernel.org/stable/c/58b83b9a9a929611a2a2e7d88...

https://git.kernel.org/stable/c/2b12d06c37fd3a394376f42f0...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 4, 2025
Vulnerability Reserved
Apr 16, 2025