Primary

Context

Linux Kernel Zram Swap Zeroed Page Mapping Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's zram swap handling can lead to user processes being corrupted by unexpectedly receiving zeroed (invalid) data. This issue arises under CLONE_VM cloning, where one CPU may read zeroed data after another CPU has deleted a zram entry, creating a synchronization problem. The vulnerability has been addressed by modifying the swap handling to ensure that correct data is mapped to user space, although this may increase memory consumption.

Impact

The vulnerability can cause data corruption in user processes by introducing invalid zeroed data, which can disrupt normal operations and lead to incorrect program behavior.

Remediation

Users can apply the latest patches available in the Linux kernel repository to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

3.5

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

3.5

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Zram Swap Zeroed Page Mapping Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating