CVE-2025-39754 mm/smaps: fix race between smaps_hugetlb_range and migration

In the Linux kernel, the following vulnerability has been resolved: mm/smaps: fix race between smapshugetlbrange and migration smapshugetlbrange handles the pte without holdling ptl, and may be concurrenct with migration, leaing to BUGON in pfnswapentrytopage. The race is as follows...

CVE-2025-21933

CVE-2025-21933: In the Linux kernel (ARM), a NULL pointer dereference can occur in pgtable when update_mmu_cache_range() is invoked with a NULL vmf, causing a NULL dereference in adjust_pte(). The issue is triggered by how PTE locks are acquired; the fix changes the lock decision to be based on w...

CVE-2025-21933 arm: pgtable: fix NULL pointer dereference issue

In the Linux kernel, the following vulnerability has been resolved: arm: pgtable: fix NULL pointer dereference issue When updatemmucacherange is called by updatemmucache, the vmf parameter is NULL, which will cause a NULL pointer dereference issue in adjustpte: Unable to handle kernel NULL pointe...

CVE-2024-46787 userfaultfd: fix checks for huge PMDs

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix checks for huge PMDs Patch series "userfaultfd: fix races around pmdtranshuge check", v2. The pmdtranshuge code in mfillatomic is wrong in three different ways depending on kernel version: 1. The pmdtranshuge che...