Linux Kernel Page Allocation Tagging Vulnerability

A vulnerability in the Linux kernel's memory allocation system can lead to uninitialized codetags for certain pages. This issue arises because the page extension, which manages codetags, is not fully initialized during the early boot process. As a result, some pages allocated before this initialization lack a proper codetag. This vulnerability is particularly relevant when the kernel is configured with memory allocation profiling enabled, as it can trigger warnings related to the missing codetag when these pages are freed.

Impact

The vulnerability can cause warnings about uninitialized codetags when certain pages are freed, potentially leading to confusion or misinterpretation of the system's memory management status.

Reproduction

The vulnerability can be reproduced by booting a Linux kernel with memory allocation profiling enabled and the profiling feature compressed disabled. During this boot process, some pages will be allocated before the page extension is fully initialized, resulting in the missing codetag. Once the system is running, the KASAN (Kernel Address Sanitizer) memory error detector can be used to reclaim these pages, triggering the warning about the missing codetag when they are freed.

Remediation

Users can upgrade to the latest version of the Linux kernel, where this vulnerability has been addressed. Instructions for downloading the latest kernel version can be found on the official Linux kernel website.