CVE-2025-37760

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved. The issue was related to the handling of Out-of-Memory (OOM) conditions during VMA merge operations. In certain cases, the caller did not mind if the merge failed due to an OOM condition, but the kernel did not provide a way to handle this situation explicitly. To address this, a 'give up on oom' option was added to allow the caller to specify that the operation should bail out if an OOM condition arises. This change was motivated by a issue found in the uffd release code, where an injected fault on allocation could trigger an OOM condition, causing the code to become confused and treat an error value as a VMA pointer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.