PT-2025-30764 · Linux+6 · Linux Kernel+6
Published
2025-01-01
·
Updated
2026-05-22
·
CVE-2025-38364
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The Linux kernel contains a flaw related to the
MA STATE PREALLOC flag within the mas preallocate() function. This issue can lead to a warning message followed by a null pointer dereference when subsequent requests for a larger number of nodes are ignored, such as during a vma merge retry in mmap region(). The flaw occurs because the MA STATE PREALLOC flag is not properly handled during allocation requests, potentially causing allocations to be skipped. The issue is addressed by temporarily clearing the preallocation flag when explicit allocations are requested and ensuring it is set on zero allocations to detect underflow conditions.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
DoS
Memory Leak
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu