Linux Kernel Empty Range Invalidation Vulnerability in mremap() System Call

Vulnerability

A vulnerability in the Linux kernel's memory management can lead to unnecessary warnings in KVM's memory management unit notifier. This issue arises when the mremap() system call is used with an old_size of zero, causing the move_page_tables() function to invoke invalidate_range_start() and invalidate_range_end() with an empty range. Such empty ranges have previously been flagged as off-by-one errors, triggering a warning. Although there have been few unique reports of this issue, it is considered beneficial to identify and correct these erroneous usages in userspace.

Impact

The vulnerability causes unnecessary warnings in KVM's memory management unit notifier, which can disrupt normal operations and performance.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Empty Range Invalidation Vulnerability in mremap() System Call

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating