CVE-2025-68329
- Source
- https://cve.org/CVERecord?id=CVE-2025-68329
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68329.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-68329
- Downstream
- Published
- 2025-12-22T16:12:23.133Z
- Modified
- 2026-03-09T23:54:57.728361Z
- Summary
- tracing: Fix WARN_ON in tracing_buffers_mmap_close for split VMAs
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
tracing: Fix WARNON in tracingbuffersmmapclose for split VMAs
When a VMA is split (e.g., by partial munmap or MAPFIXED), the kernel calls vmops->close on each portion. For trace buffer mappings, this results in ringbufferunmap() being called multiple times while ringbuffermap() was only called once.
This causes ringbufferunmap() to return -ENODEV on subsequent calls because usermapped is already 0, triggering a WARNON.
Trace buffer mappings cannot support partial mappings because the ring buffer structure requires the complete buffer including the meta page.
Fix this by adding a may_split callback that returns -EINVAL to prevent VMA splits entirely.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68329.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/45053c12c45f0fb8ef6ab95118dd928d2fec0255
- https://git.kernel.org/stable/c/922fdd0b755a84f9933b3ca195f60092b6bb88ee
- https://git.kernel.org/stable/c/b042fdf18e89a347177a49e795d8e5184778b5b6
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68329.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-68329