CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-37908: mm, slab: clean up slab->obj_exts always

Description

In the Linux kernel, the following vulnerability has been resolved:

mm, slab: clean up slab->obj_exts always

When memory allocation profiling is disabled at runtime or due to an
error, shutdown_mem_profiling() is called: slab->obj_exts which
previously allocated remains.
It won't be cleared by unaccount_slab() because of
mem_alloc_profiling_enabled() not true. It's incorrect, slab->obj_exts
should always be cleaned up in unaccount_slab() to avoid following error:

[...]BUG: Bad page state in process...
..
[...]page dumped because: page still charged to cgroup

[[email protected]: fold need_slab_obj_ext() into its only user]

Classification

CVE ID: CVE-2025-37908

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.02% (probability of being exploited)

EPSS Percentile: 4.26% (scored less or equal to compared to others)

EPSS Date: 2025-06-18 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2025-37908
https://git.kernel.org/stable/c/dab2a13059a475b6392550f882276e170fe2fcff
https://git.kernel.org/stable/c/01db0e1a48345aa1937f3bdfc7c7108d03ebcf7e
https://git.kernel.org/stable/c/be8250786ca94952a19ce87f98ad9906448bc9ef

Timeline

2025-05-20 16:40:15 UTC
CVE

mm, slab: clean up slab->obj_exts always