Primary

Context

Linux Kernel PMD Migration Entry Dereference Vulnerability in Huge Memory Management

Vulnerability

A vulnerability in the Linux kernel's handling of transparent huge pages (THP) can lead to invalid memory access. This issue arises during the migration of THP when there is concurrent access to the Page Middle Directory (PMD) migration entry, potentially causing a page fault. The vulnerability has been addressed by implementing a check on the PMD migration entry to prevent invalid access. The issue was discovered by syzkaller on an internal kernel and confirmed on upstream versions.

Impact

Exploitation of this vulnerability can cause a page fault due to an invalid memory access, disrupting normal process execution.

Reproduction

The vulnerability can be reproduced by migrating a transparent huge page while another process concurrently accesses the PMD migration entry. This scenario can lead to an invalid address access, causing a page fault.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.9

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.9

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel PMD Migration Entry Dereference Vulnerability in Huge Memory Management

Vulnerability

Impact

Reproduction

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating