PT-2025-13218 · Linux+6 · Linux Kernel+6

Published

2025-02-24

·

Updated

2026-05-26

·

CVE-2025-21881

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A vulnerability in the Linux kernel has been resolved, related to the uprobes feature. The issue occurs when the shared zeropage is not properly rejected in the uprobe write opcode() function, leading to incorrect RSS counts and potential crashes. The vulnerability can be triggered by a specific syzkaller test case, which can cause a crash with a "Bad page state" error. The issue is rare, but it can theoretically lead to warnings and errors, including "Bad rss-count" and "Bad page state" reports.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-682

Related Identifiers

AZL-69494
BDU:2025-03683
CVE-2025-21881
DLA-4193-1
DSA-5900-1
ECHO-9A78-3AB6-8ECD
OESA-2025-1409
OESA-2025-1410
OESA-2025-1446
OESA-2025-1450
OPENSUSE-SU-2025_01614-1
OPENSUSE-SU-2025_01707-1
SUSE-SU-2025:01600-1
SUSE-SU-2025:01614-1
SUSE-SU-2025:01707-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:01951-1
SUSE-SU-2025:01964-1
SUSE-SU-2025:01967-1
SUSE-SU-2025:02849-1
SUSE-SU-2025:02851-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20206-1
SUSE-SU-2025:20270-1
SUSE-SU-2025:20283-1
SUSE-SU-2025_01600-1
SUSE-SU-2025_01614-1
SUSE-SU-2025_01707-1
SUSE-SU-2025_01951-1
SUSE-SU-2025_01964-1
SUSE-SU-2025_01967-1
SUSE-SU-2025_02849-1
USN-7521-1
USN-7521-2
USN-7521-3
USN-7764-1
USN-7764-2
USN-7765-1
USN-7766-1
USN-7767-1
USN-7767-2
USN-7779-1
USN-7790-1
USN-7800-1
USN-7801-1
USN-7801-2
USN-7801-3
USN-7802-1
USN-7809-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu