Memory Management Vulnerability in Linux Kernel Affecting Huge Pages
CVE-2025-40006
What is CVE-2025-40006?
A race condition in the Linux kernel's memory management subsystem can lead to improper handling of huge pages. When a folio is deleted, it may remain mapped due to a lack of synchronization, resulting in a potential failure during migration. This flaw can cause instances where mapped pages trigger errors in the file system, potentially leading to system instability. The issue arises from the process of removing inode single folio mappings without holding the appropriate locks, thus allowing inconsistencies in the page state. It is crucial for administrators to apply the latest patches to mitigate the risks associated with this vulnerability.
Affected Version(s)
Linux 4aae8d1c051ea00b456da6811bc36d1f69de5445
Linux 4aae8d1c051ea00b456da6811bc36d1f69de5445 < 91f548e920fbf8be3f285bfa3fa045ae017e836d
Linux 4aae8d1c051ea00b456da6811bc36d1f69de5445 < 3e851448078f5b01f6264915df3cfef75e323a12