Linux Kernel Vulnerability in Memory Handling by Vendor Linux
CVE-2025-39725
What is CVE-2025-39725?
A vulnerability exists in the Linux kernel concerning the handling of hwpoisoned large folios during memory reclamation. In the function shrink_folio_list(), if a hwpoisoned folio is large, it cannot be effectively managed by unmap_poisoned_folio(). This situation arises when there is a race between memory reclamation for large folios and memory_failure operations, potentially leading to a kernel panic. Specifically, without appropriate handling flags (TTU_SPLIT_HUGE_PMD), a null pointer dereference may occur. Even when the flags are applied, warnings may arise if the relevant page is not present in the swapcache. This issue remains rare in practical scenarios, but it highlights critical concerns within memory management processes in the kernel.
Affected Version(s)
Linux 1c9798bf8145a92abf45aa9d38a6406d9eb8bdf0 < 656eaddbc952e1baae2f69281c22debe22140312
Linux 1b0449544c6482179ac84530b61fc192a6527bfd
Linux 1b0449544c6482179ac84530b61fc192a6527bfd < 9f1e8cd0b7c4c944e9921b52a6661b5eda2705ab