CVE-2025-21686

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue arises when IORING REGISTER CLONE BUFFERS is used to clone buffers from one uring instance to another, where the two instances use different memory managers (MMs) for accounting. If the first instance is closed before the second, the pinned memory counters for the second instance can be decremented incorrectly, leading to negative locked memory. This occurs because the pinned memory was originally accounted for through the first instance.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.