PT-2025-49373 · Linux+3 · Linux Kernel+3

Published

2025-06-12

·

Updated

2026-05-07

·

CVE-2025-40272

CVSS v2.0

4.6

Medium

VectorAV:L/AC:L/Au:S/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A flaw exists in the Linux kernel’s handling of page faults within secret memory files created using memfd secret(2). Concurrent page faults in the same page by multiple tasks can lead to a use-after-free condition. Specifically, the kernel may allocate a new folio for the page, remove it from the direct map, and attempt to add it to the file mapping. If multiple tasks attempt this concurrently, one task may succeed while the other fails, leading to the freeing of the folio before the page is restored to the direct map. This can result in a supervisor not-present page fault if another task attempts to allocate the page during this window. The issue stems from the incorrect ordering of operations during the fault handling process.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2026-05114
CVE-2025-40272
ECHO-7AE1-30C3-DF3F
MGASA-2026-0017
MGASA-2026-0018
OESA-2026-1759
OESA-2026-1760
OESA-2026-1761
OPENSUSE-SU-2026:20145-1
SUSE-SU-2026:0278-1
SUSE-SU-2026:0281-1
SUSE-SU-2026:0293-1
SUSE-SU-2026:0315-1
SUSE-SU-2026:20207-1
SUSE-SU-2026:20220-1
SUSE-SU-2026:20228-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-8029-1
USN-8029-2
USN-8029-3
USN-8030-1
USN-8048-1
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8096-1
USN-8096-2
USN-8096-3
USN-8096-4
USN-8096-5
USN-8100-1
USN-8116-1
USN-8125-1
USN-8126-1
USN-8141-1
USN-8163-1
USN-8163-2
USN-8165-1
USN-8243-1
USN-8261-1

Affected Products

Debian
Linuxmint
Linux Kernel
Ubuntu