PT-2025-15403 · Linux+5 · Linux Kernel+5

Published

2025-04-08

·

Updated

2026-04-20

·

CVE-2025-22015

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)
Description: A vulnerability in the Linux kernel has been resolved, related to the migration of shared memory (shmem) pages. The issue occurs when a shmem folio is in both page cache and swap cache at the same time, causing xarray multi-index entry corruption. This happens because folio test swapbacked() is used to determine the number of xarray entries to update, which conflates shmem in page cache and shmem in swap cache cases. The fix involves using folio test swapcache() to determine whether xarray is storing swap cache entries or not, to choose the right number of xarray entries to update.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

BDU:2025-11785
CVE-2025-22015
DLA-4193-1
DSA-5900-1
ECHO-C877-F793-FF7F
MGASA-2025-0142
MGASA-2025-0146
OESA-2025-1463
OESA-2025-1464
OPENSUSE-SU-2025_01614-1
OPENSUSE-SU-2025_01707-1
SUSE-SU-2025:01614-1
SUSE-SU-2025:01707-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:01951-1
SUSE-SU-2025:01964-1
SUSE-SU-2025:01967-1
SUSE-SU-2025:20343-1
SUSE-SU-2025:20344-1
SUSE-SU-2025:20354-1
SUSE-SU-2025:20355-1
SUSE-SU-2025_01614-1
SUSE-SU-2025_01707-1
SUSE-SU-2025_01951-1
SUSE-SU-2025_01964-1
SUSE-SU-2025_01967-1
USN-7605-1
USN-7605-2
USN-7606-1
USN-7628-1
USN-7764-1
USN-7764-2
USN-7765-1
USN-7766-1
USN-7767-1
USN-7767-2
USN-7779-1
USN-7790-1
USN-7800-1
USN-7801-1
USN-7801-2
USN-7801-3
USN-7802-1
USN-7809-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Suse
Ubuntu