DEBIAN-CVE-2025-40218
- Source
- https://security-tracker.debian.org/tracker/CVE-2025-40218
- Import Source
- https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2025-40218.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2025-40218
- Upstream
- Published
- 2025-12-04T15:15:57.643Z
- Modified
- 2025-12-05T11:15:42.482500Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved: mm/damon/vaddr: do not repeat pteoffsetmaplock() until success DAMON's virtual address space operation set implementation (vaddr) calls pteoffsetmaplock() inside the page table walk callback function. This is for reading and writing page table accessed bits. If pteoffsetmaplock() fails, it retries by returning the page table walk callback function with ACTIONAGAIN. pteoffsetmap_lock() can continuously fail if the target is a pmd migration entry, though. Hence it could cause an infinite page table walk if the migration cannot be done until the page table walk is finished. This indeed caused a soft lockup when CPU hotplugging and DAMON were running in parallel. Avoid the infinite loop by simply not retrying the page table walk. DAMON is promising only a best-effort accuracy, so missing access to such pages is no problem.
- References
Affected packages
Debian:13 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Debian:14 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed6.17.6-1