CVE-2025-38071

Summary

In the Linux kernel, the following vulnerability has been resolved:

x86/mm: Check return value from memblock_phys_alloc_range()

At least with CONFIG_PHYSICAL_START=0x100000, if there is < 4 MiB of contiguous free memory available at this point, the kernel will crash and burn because memblock_phys_alloc_range() returns 0 on failure, which leads memblock_phys_free() to throw the first 4 MiB of physical memory to the wolves.

At a minimum it should fail gracefully with a meaningful diagnostic, but in fact everything seems to work fine without the weird reserve allocation.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa7259df7670240ee03b0cfce8a3e5d3773911e24 < 8c18c904d301ffeb33b071eadc55cd6131e1e9beaffected
LinuxLinuxa7259df7670240ee03b0cfce8a3e5d3773911e24 < bffd5f2815c5234d609725cd0dc2f4bc5de2fc67affected
LinuxLinuxa7259df7670240ee03b0cfce8a3e5d3773911e24 < c6f2694c580c27dca0cf7546ee9b4bfa6b940e38affected
LinuxLinuxa7259df7670240ee03b0cfce8a3e5d3773911e24 < dde4800d2b0f68b945fd81d4fc2d4a10ae25f743affected
LinuxLinuxa7259df7670240ee03b0cfce8a3e5d3773911e24 < 631ca8909fd5c62b9fda9edda93924311a78a9c4affected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux6.1.141 <= 6.1.*unaffected
LinuxLinux6.6.93 <= 6.6.*unaffected
LinuxLinux6.12.31 <= 6.12.*unaffected
LinuxLinux6.14.9 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

Additional References

References