Kernel Vulnerability in Ceph Functionality of Linux by Vendor
CVE-2025-39879

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 23 September 2025

What is CVE-2025-39879?

A vulnerability exists in the Linux kernel's Ceph functionality, specifically in the handling of folio_batch entries during memory management. The function ceph_process_folio_batch() incorrectly sets folio_batch entries to NULL, creating an illegal state that could lead to system crashes when ceph_writepages_start() is invoked. Recent changes to the code have made it possible for errors in this function to go unhandled, risking kernel NULL pointer dereferences and potential system instability. To mitigate this issue, it's advised to implement fixes by ensuring the ceph_shift_unused_folios_left() function is called immediately after ceph_process_folio_batch() to maintain the integrity of folio_batch entries.

Affected Version(s)

Linux ce80b76dd32764cc914975777e058d4fae4f0ea0 < 289b6615cf553d98509a9b273195d9936da1cfb2

Linux ce80b76dd32764cc914975777e058d4fae4f0ea0

Linux 6.15

References

https://git.kernel.org/stable/c/289b6615cf553d98509a9b273...

https://git.kernel.org/stable/c/cce7c15faaac79b532a07ed6a...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 23, 2025
Vulnerability Reserved
Apr 16, 2025

JSON