5.5
CVE-2025-38686
- EPSS 0.15%
- Veröffentlicht 04.09.2025 15:32:40
- Zuletzt bearbeitet 24.11.2025 19:48:02
- CVE-Watchlists
- Unerledigt
userfaultfd: fix a crash in UFFDIO_MOVE when PMD is a migration entry
In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix a crash in UFFDIO_MOVE when PMD is a migration entry When UFFDIO_MOVE encounters a migration PMD entry, it proceeds with obtaining a folio and accessing it even though the entry is swp_entry_t. Add the missing check and let split_huge_pmd() handle migration entries. While at it also remove unnecessary folio check. [surenb@google.com: remove extra folio check, per David]
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.8 < 6.12.43
Linux ≫ Linux Kernel Version >= 6.13 < 6.15.11
Linux ≫ Linux Kernel Version >= 6.16 < 6.16.2
Linux ≫ Linux Kernel Version6.17 Updaterc1
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.15% | 0.041 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
https://git.kernel.org/stable/c/bb81c18dbd42650c844e160cafa7cbb20243a96a
https://git.kernel.org/stable/c/1202abad7a7ccd28c426d2844771a387b07629a4
https://git.kernel.org/stable/c/7f1101a0a181243ad587ececdffc4845f035549f
https://git.kernel.org/stable/c/aba6faec0103ed8f169be8dce2ead41fcb689446