Linux Kernel Deferred Split Queue Race Condition Vulnerability During Migration

A race condition vulnerability has been addressed in the Linux kernel's memory migration process. The issue arises in the handling of the deferred split queue, which is crucial for managing memory pages. When a memory page is migrated, the state of its deferred split queue is recorded and then replayed on the destination page. However, if this replay occurs after the source page's migration has been fully processed, the destination page can become visible before it is properly requeued. This premature visibility can lead to incorrect mapping states, triggering warnings about the deferred split handling. The vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability could cause memory management issues, where migrated pages are incorrectly marked as partially mapped, leading to potential data loss in the deferred split queue.

Reproduction

The vulnerability can be reproduced by migrating memory pages that are part of the deferred split queue. During this process, the destination page can be incorrectly marked as partially mapped, especially if concurrent memory management operations are performed.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree, where this vulnerability has been fixed.