Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix softlockup in arena_map_free on 64k page kernel On an aarch64 kernel with CONFIG_PAGE_SIZE_64KB=y, arena_htab tests cause a segmentation fault and soft lockup. The same failure is not observed with 4k pages on aarch64. It turns out arena_map_free() is calling apply_to_existing_page_range() with the address returned by bpf_arena_get_kern_vm_start(). If this address is not page-aligned the code ends up calling apply_to_pte_range() with that unaligned address causing soft lockup. Fix it by round up GUARD_SZ to PAGE_SIZE << 1 so that the division by 2 in bpf_arena_get_kern_vm_start() returns a page-aligned value.

INFO

Published Date :

2025-03-12T09:42:06.480Z

Last Modified :

2025-10-01T19:26:38.747Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-21851 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-21851.

URL Resource
https://git.kernel.org/stable/c/517e8a7835e8cfb398a0aeb0133de50e31cae32b cve-icon cve-icon
https://git.kernel.org/stable/c/787d556a3de447e70964a4bdeba9196f62a62b1e cve-icon cve-icon
https://git.kernel.org/stable/c/c1f3f3892d4526f18aaeffdb6068ce861e793ee3 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025031213-CVE-2025-21851-87bd@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-21851 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-21851 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact