CVE-2025-37834

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been identified, related to the handling of dirty swapcache pages. When a dirty swapcache page is isolated by the reclaim process and the page isn't locked, injecting memory failure for the page can cause issues. The me swapcache dirty() function clears the uptodate flag and tries to delete the page from the LRU, but fails, and the reclaim process puts the hwpoisoned page back to the LRU. If the process that maps the hwpoisoned page exits, the page is deleted but will never be freed and will remain in the LRU forever. Triggering a reclaim again can cause add to swap() to trigger a VM BUG ON FOLIO due to the cleared uptodate flag.

Recommendations To fix the issue, skip the hwpoisoned page in shrink folio list(). Additionally, unmap the hwpoison folio in shrink folio list() if it hasn't been unmapped by hwpoison user mappings() yet, to prevent it from failing to be unmapped later.

At the moment, there is no information about a newer version that contains a fix for this vulnerability.