CVE-2025-38102

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.15.0-rc5

Description: A race condition exists between vmci host setup notify and vmci ctx unset notify in the Linux kernel. This issue can trigger a warning in try grab folio due to a page being freed while still being accessed. The problem arises when get user pages fast is not finished and vmci ctx unset notify tries to put the page, leading to a race condition. The estimated number of potentially affected devices is not provided.

Recommendations: For Linux kernel versions prior to 6.15.0-rc5, to resolve this issue, use a local variable page to ensure that notify page can be seen after finishing get user pages fast. As a temporary workaround, consider restricting access to the vmci host setup notify and vmci ctx unset notify functions until a patch is available.