CVE-2025-68248

EPSS 0.02%
Veröffentlicht 16.12.2025 14:32:15
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

vmw_balloon: indicate success when effectively deflating during migration

In the Linux kernel, the following vulnerability has been resolved:

vmw_balloon: indicate success when effectively deflating during migration

When migrating a balloon page, we first deflate the old page to then
inflate the new page.

However, if inflating the new page succeeded, we effectively deflated the
old page, reducing the balloon size.

In that case, the migration actually worked: similar to migrating+
immediately deflating the new page.  The old page will be freed back to
the buddy.

Right now, the core will leave the page be marked as isolated (as we
returned an error).  When later trying to putback that page, we will run
into the WARN_ON_ONCE() in balloon_page_putback().

That handling was changed in commit 3544c4faccb8 ("mm/balloon_compaction:
stop using __ClearPageMovable()"); before that change, we would have
tolerated that way of handling it.

To fix it, let's just return 0 in that case, making the core effectively
just clear the "isolated" flag + freeing it back to the buddy as if the
migration succeeded.  Note that the new page will also get freed when the
core puts the last reference.

Note that this also makes it all be more consistent: we will no longer
unisolate the page in the balloon driver while keeping it marked as being
isolated in migration core.

This was found by code inspection.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 5

CNA 2 VulnDex Vulnerability Enrichment 3

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 3544c4faccb8f0867bc65f8007ee70bfb5054305

Version < aa05a044c5c2e147d726ac2fae1a97e0775eac11

Status affected

Version 3544c4faccb8f0867bc65f8007ee70bfb5054305

Version < 4ba5a8a7faa647ada8eae61a36517cf369f5bbe4

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.17

Status affected

Version 0

Version < 6.17

Status unaffected

Version <= 6.17.*

Version 6.17.6

Status unaffected

Version <= *

Version 6.18

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.064

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/aa05a044c5c2e147d726ac2fae1a97e0775eac11

https://git.kernel.org/stable/c/4ba5a8a7faa647ada8eae61a36517cf369f5bbe4

https://nvd.nist.gov/vuln/detail/CVE-2025-68248

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68248

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68248

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-68248