Race Condition in Linux Kernel's zram Affects Multiple Distributions

CVE-2025-39941

What is CVE-2025-39941?

A vulnerability exists in the Linux kernel's zram implementation that introduces a race condition during parallel writes to the same zram index. This can lead to memory leaks due to improper management of zsmalloc handles. When two CPU threads attempt concurrent operations on zram slots without appropriate locking mechanisms, one thread may free a handle too early, resulting in the other thread operating on a stale or invalid handle. Such conditions can compromise system stability and data integrity. It's essential to apply the latest patches to mitigate this issue.

References