CVE-2025-21984

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version

Description A vulnerability in the Linux kernel has been resolved, related to the userfaultfd move function encountering swapcache. The issue arises when the function checks if the PTE entry is present or a swap entry and handles it incorrectly, creating a race window. This can lead to critical issues, including a kernel BUG, depending on the system configuration. If KSM is disabled, both small and large folios can trigger a BUG during the add rmap operation.

Recommendations To resolve the issue, update to a version of the Linux kernel that includes the fix for the userfaultfd move function. As a temporary workaround, consider disabling the userfaultfd feature until a patch is available. Restrict access to the swapcache to minimize the risk of exploitation. Avoid using the folio variable in the affected API endpoints until the issue is resolved.

Note: The provided information does not specify the exact fixed version of the Linux kernel. Therefore, it is recommended to update to the latest available version to ensure the vulnerability is resolved.