PT-2025-27291 · Linux+9 · Linux Kernel+9

Published

2025-06-06

·

Updated

2026-05-26

·

CVE-2025-38085

CVSS v2.0

5.7

Medium

VectorAV:L/AC:L/Au:S/C:P/I:P/A:C
Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)
Description: A race condition exists between huge pmd unshare() and GUP-fast in the Linux kernel. The huge pmd unshare() function drops a reference on a page table that may have been shared across processes, potentially turning it into a normal page table used in another process. This could lead to GUP-fast walking the page tables of another process, resulting in unexpected behavior. Although no immediate kernel memory corruption is apparent, the issue is unusual and has been fixed with an explicit broadcast IPI through tlb remove table sync one().
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Information Disclosure

Race Condition

Weakness Enumeration

CWE-200CWE-362

Related Identifiers

ALSA-2025:13589
ALSA-2025:13590
ALSA-2025:13962
AZL-64380
BDU:2025-15824
CESA-2025_13589
CESA-2025_13590
CVE-2025-38085
DLA-4327-1
DLA-4328-1
DSA-5973-1
ECHO-A853-1717-CF8D
INFSA-2025_13589
INFSA-2025_13590
INFSA-2025_13962
MGASA-2025-0218
MGASA-2025-0219
OESA-2025-2118
OESA-2025-2119
OESA-2025-2120
OESA-2025-2121
OESA-2025-2122
OPENSUSE-SU-2025:20172-1
RHSA-2025:13589
RHSA-2025:13590
RHSA-2025:13598
RHSA-2025:13962
RHSA-2025:15224
RHSA-2025:15227
RHSA-2025:15647
RHSA-2025_13589
RHSA-2025_13590
RHSA-2025_13962
SUSE-SU-2025:02853-1
SUSE-SU-2025:02923-1
SUSE-SU-2025:02969-1
SUSE-SU-2025:02996-1
SUSE-SU-2025:02997-1
SUSE-SU-2025:03011-1
SUSE-SU-2025:03023-1
SUSE-SU-2025:03628-1
SUSE-SU-2025:20577-1
SUSE-SU-2025:20586-1
SUSE-SU-2025:20601-1
SUSE-SU-2025:20602-1
SUSE-SU-2025:3716-1
SUSE-SU-2025:4149-1
SUSE-SU-2025:4320-1
SUSE-SU-2025_02853-1
SUSE-SU-2025_02969-1
SUSE-SU-2025_02996-1
SUSE-SU-2025_02997-1
SUSE-SU-2025_03011-1
SUSE-SU-2025_03023-1
SUSE-SU-2026:0316-1
SUSE-SU-2026:20012-1
SUSE-SU-2026:20015-1
SUSE-SU-2026:20021-1
USN-7774-1
USN-7774-2
USN-7774-3
USN-7774-4
USN-7774-5
USN-7775-1
USN-7775-2
USN-7775-3
USN-7776-1
USN-7833-1
USN-7833-2
USN-7833-3
USN-7833-4
USN-7834-1
USN-7856-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Almalinux
Centos
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu