SUSE-SU-2025:4505-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. - CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in...

mm/ksm: fix flag-dropping behavior in ksm_madvise

...

CVE-2025-40040

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix flag-dropping behavior in ksmmadvise syzkaller discovered the following crash: kernel BUG 44.607039 ------------ cut here ------------ 44.607422 kernel BUG at mm/userfaultfd.c:2067! 44.608148 Oops: invalid opcode: 000...

CVE-2025-40040 mm/ksm: fix flag-dropping behavior in ksm_madvise

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix flag-dropping behavior in ksmmadvise syzkaller discovered the following crash: kernel BUG 44.607039 ------------ cut here ------------ 44.607422 kernel BUG at mm/userfaultfd.c:2067! 44.608148 Oops: invalid opcode: 000...

CVE-2025-40040

CVE-2025-40040 is a Linux kernel vulnerability arising from the mm/ksm: fix flag-dropping behavior in ksm_madvise. The issue causes an UFFD inconsistency in userfaultfd Release paths when a VMA registered for UFFD in MINOR mode undergoes MADV_UNMEARGEABLE, inadvertently clearing the upper 32 bits...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper flag dropping behavior in the ksmmadvise function, which could lead to a kernel crash...