CVE-2024-27007

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue concerns the userfaultfd feature in the Linux kernel, where the src folio is changed after ensuring it's unpinned in UFFDIO MOVE. A commit was made to fix an unexpected change to src folio when UFFDIO MOVE fails, which moved the src folio->{mapping, index} changing to after clearing the page-table and ensuring that it's not pinned. This avoids failure of swapout+migration and possibly memory corruption. However, the commit missed fixing it in the huge-page case.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.