Linux Kernel Hugetlb VMA Split Unsharing Vulnerability

Vulnerability

A vulnerability in the Linux kernel's handling of hugetlb memory management has been addressed. The issue arose because the __split_vma() function initiated the unsharing of hugetlb page tables too early, before acquiring the necessary locks. This premature action allowed for race conditions where VMA-locked page faults and rmap walks from other processes could inadvertently cause page tables to be shared again before the split was completed. The vulnerability affects several versions of the Linux kernel, as the problematic behavior was introduced in version 5.13 and backported to earlier versions.

Impact

Exploitation of this vulnerability could lead to unintended sharing of hugetlb page tables, causing race conditions that disrupt normal memory management operations.

Added: Jun 28, 2025, 8:23 AM

Updated: Jun 28, 2025, 8:23 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Hugetlb VMA Split Unsharing Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating