-

CVE-2025-40245

EPSS 0.04%
Veröffentlicht 04.12.2025 15:31:34
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

nios2: ensure that memblock.current_limit is set when setting pfn limits

In the Linux kernel, the following vulnerability has been resolved:

nios2: ensure that memblock.current_limit is set when setting pfn limits

On nios2, with CONFIG_FLATMEM set, the kernel relies on
memblock_get_current_limit() to determine the limits of mem_map, in
particular for max_low_pfn.
Unfortunately, memblock.current_limit is only default initialized to
MEMBLOCK_ALLOC_ANYWHERE at this point of the bootup, potentially leading
to situations where max_low_pfn can erroneously exceed the value of
max_pfn and, thus, the valid range of available DRAM.

This can in turn cause kernel-level paging failures, e.g.:

[   76.900000] Unable to handle kernel paging request at virtual address 20303000
[   76.900000] ea = c0080890, ra = c000462c, cause = 14
[   76.900000] Kernel panic - not syncing: Oops
[   76.900000] ---[ end Kernel panic - not syncing: Oops ]---

This patch fixes this by pre-calculating memblock.current_limit
based on the upper limits of the available memory ranges via
adjust_lowmem_bounds, a simplified version of the equivalent
implementation within the arm architecture.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

CNA 2 VulnDex Vulnerability Enrichment 12

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 7f7bc20bc41a4fbcd2db75b375ac95e5faf958ae

Version < 25f09699edd360b534ccae16bc276c3b52c471f3

Status affected

Version 7f7bc20bc41a4fbcd2db75b375ac95e5faf958ae

Version < 5c3e38a367822f036227dd52bac82dc4a05157e2

Status affected

Version 7f7bc20bc41a4fbcd2db75b375ac95e5faf958ae

Version < b1ec9faef7e36269ca3ec890972a78effbaeb975

Status affected

Version 7f7bc20bc41a4fbcd2db75b375ac95e5faf958ae

Version < 90f5f715550e07cd6a51f80fc3f062d832c8c997

Status affected

Version 7f7bc20bc41a4fbcd2db75b375ac95e5faf958ae

Version < 8912814f14e298b83df072fecc1f7ed1b63b1b2c

Status affected

Version 7f7bc20bc41a4fbcd2db75b375ac95e5faf958ae

Version < a20b83cf45be2057f3d073506779e52c7fa17f94

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.12

Status affected

Version 0

Version < 5.12

Status unaffected

Version <= 5.15.*

Version 5.15.196

Status unaffected

Version <= 6.1.*

Version 6.1.158

Status unaffected

Version <= 6.6.*

Version 6.6.115

Status unaffected

Version <= 6.12.*

Version 6.12.56

Status unaffected

Version <= 6.17.*

Version 6.17.6

Status unaffected

Version <= *

Version 6.18

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.122

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/25f09699edd360b534ccae16bc276c3b52c471f3

https://git.kernel.org/stable/c/5c3e38a367822f036227dd52bac82dc4a05157e2

https://git.kernel.org/stable/c/b1ec9faef7e36269ca3ec890972a78effbaeb975

https://git.kernel.org/stable/c/90f5f715550e07cd6a51f80fc3f062d832c8c997

https://git.kernel.org/stable/c/8912814f14e298b83df072fecc1f7ed1b63b1b2c

https://git.kernel.org/stable/c/a20b83cf45be2057f3d073506779e52c7fa17f94

https://nvd.nist.gov/vuln/detail/CVE-2025-40245

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-40245

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-40245

EUVD