CVE-2025-22000

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-22000

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-22000.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-22000

Downstream

BELL-CVE-2025-22000

DEBIAN-CVE-2025-22000

MINI-g4w7-xhvp-9mfw

UBUNTU-CVE-2025-22000

USN-7605-1

USN-7605-2

USN-7606-1

USN-7628-1

Published

2025-04-03T08:15:15Z

Modified

2025-08-09T20:01:27Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

mm/huge_memory: drop beyond-EOF folios with the right number of refs

When an after-split folio is large and needs to be dropped due to EOF, folioputrefs(folio, folionrpages(folio)) should be used to drop all page cache refs. Otherwise, the folio will not be freed, causing memory leak.

This leak would happen on a filesystem with blocksize > page_size and a truncate is performed, where the blocksize makes folios split to >0 order ones, causing truncated folios not being freed.

References

Affected packages