CVE-2025-21851
LOW EPSS 4.3%
Published Mar 12, 20251y ago · Modified Jun 17, 20261w ago
3.3 CVSS 3.1
Published Mar 12, 2025 1y ago
Last Modified Jun 17, 2026 1w ago
Description
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix softlockup in arena_map_free on 64k page kernel On an aarch64 kernel with CONFIG_PAGE_SIZE_64KB=y, arena_htab tests cause a segmentation fault and soft lockup. The same failure is not observed with 4k pages on aarch64. It turns out arena_map_free() is calling apply_to_existing_page_range() with the address returned by bpf_arena_get_kern_vm_start(). If this address is not page-aligned the code ends up calling apply_to_pte_range() with that unaligned address causing soft lockup. Fix it by round up GUARD_SZ to PAGE_SIZE << 1 so that the division by 2 in bpf_arena_get_kern_vm_start() returns a page-aligned value.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability Low
Threat Intelligence
EPSS Exploit Probability
4.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-667
Affected Products 6
References 3
- git.kernel.org https://git.kernel.org/stable/c/517e8a7835e8cfb398a0aeb0133de50e31cae32b
- git.kernel.org https://git.kernel.org/stable/c/787d556a3de447e70964a4bdeba9196f62a62b1e
- git.kernel.org https://git.kernel.org/stable/c/c1f3f3892d4526f18aaeffdb6068ce861e793ee3
Remediation
- git.kernel.org https://git.kernel.org/stable/c/517e8a7835e8cfb398a0aeb0133de50e31cae32b
- git.kernel.org https://git.kernel.org/stable/c/787d556a3de447e70964a4bdeba9196f62a62b1e
- git.kernel.org https://git.kernel.org/stable/c/c1f3f3892d4526f18aaeffdb6068ce861e793ee3