PT-2025-46628 · Linux+3 · Linux Kernel+3

Published

2025-08-29

·

Updated

2026-05-07

·

CVE-2025-40153

CVSS v2.0

4.6

Medium

VectorAV:L/AC:L/Au:S/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17-rc7
Description The Linux kernel may experience a soft lockup when calling the mprotect() function on a large hugetlb memory area (approximately 300GB in observed customer workloads). This issue occurs because the processing within the loop can take a significant amount of time, potentially triggering a soft lockup. The problem is not specific to Memory Tagging Extension (MTE) and can be triggered by other long-running processes within the loop. The mprotect() function, used for changing memory protection, is involved in this issue. The hugetlb change protection() and change protection() functions are also implicated in the call trace. The cond resched() function is missing for hugetlb, which is present in other memory management mechanisms like Transparent Huge Pages (THP) and base pages, leading to the lockup.
Recommendations Update to a version later than 6.17-rc7.

Exploit

Fix

Improper Locking

Weakness Enumeration

CWE-667CWE-371

Related Identifiers

BDU:2025-14950
CVE-2025-40153
DLA-4379-1
DLA-4404-1
OESA-2025-2765
OESA-2025-2766
OESA-2025-2767
OPENSUSE-SU-2025:20172-1
SUSE-SU-2026:0278-1
SUSE-SU-2026:0281-1
SUSE-SU-2026:0293-1
SUSE-SU-2026:0315-1
SUSE-SU-2026:0316-1
SUSE-SU-2026:20012-1
SUSE-SU-2026:20015-1
SUSE-SU-2026:20021-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-8029-1
USN-8029-2
USN-8029-3
USN-8030-1
USN-8033-1
USN-8033-2
USN-8033-3
USN-8033-4
USN-8033-5
USN-8033-6
USN-8033-7
USN-8033-8
USN-8034-1
USN-8034-2
USN-8048-1
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8100-1
USN-8125-1
USN-8126-1
USN-8141-1
USN-8163-1
USN-8163-2
USN-8165-1
USN-8243-1
USN-8261-1

Affected Products

Debian
Linuxmint
Linux Kernel
Ubuntu