Home

Description

In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: fix NULL pointer deference when splitting folio Commit c010d47f107f ("mm: thp: split huge page to any lower order pages") introduced an early check on the folio's order via mapping->flags before proceeding with the split work. This check introduced a bug: for shmem folios in the swap cache and truncated folios, the mapping pointer can be NULL. Accessing mapping->flags in this state leads directly to a NULL pointer dereference. This commit fixes the issue by moving the check for mapping != NULL before any attempt to access mapping->flags.

PUBLISHED Reserved 2025-12-16 | Published 2025-12-16 | Updated 2025-12-16 | Assigner Linux

Product status

Default status
unaffected

c010d47f107f609b9f4d6a103b6dfc53889049e9 (git) before 592db83615a9f0164472ec789c2ed34ad35f732f
affected

c010d47f107f609b9f4d6a103b6dfc53889049e9 (git) before d1b83fbacd4397a1d2f8c6b13427a8636ae2b307
affected

c010d47f107f609b9f4d6a103b6dfc53889049e9 (git) before cff47b9e39a6abf03dde5f4f156f841b0c54bba0
affected

Default status
affected

6.9
affected

Any version before 6.9
unaffected

6.12.61 (semver)
unaffected

6.17.11 (semver)
unaffected

6.18 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/592db83615a9f0164472ec789c2ed34ad35f732f

git.kernel.org/...c/d1b83fbacd4397a1d2f8c6b13427a8636ae2b307

git.kernel.org/...c/cff47b9e39a6abf03dde5f4f156f841b0c54bba0

cve.org (CVE-2025-68293)

nvd.nist.gov (CVE-2025-68293)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.