CVE-2025-68293
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-12-16

Last updated on: 2025-12-18

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: fix NULL pointer deference when splitting folio Commit c010d47f107f ("mm: thp: split huge page to any lower order pages") introduced an early check on the folio's order via mapping->flags before proceeding with the split work. This check introduced a bug: for shmem folios in the swap cache and truncated folios, the mapping pointer can be NULL. Accessing mapping->flags in this state leads directly to a NULL pointer dereference. This commit fixes the issue by moving the check for mapping != NULL before any attempt to access mapping->flags.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-16
Last Modified
2025-12-18
Generated
2026-06-16
AI Q&A
2025-12-16
EPSS Evaluated
2026-06-15
NVD
CVE-2025-68293
EUVD
EUVD-2025-203787
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a NULL pointer dereference in the Linux kernel's memory management subsystem related to huge pages. Specifically, a recent change introduced a bug where the code accessed a mapping pointer without checking if it was NULL, leading to a NULL pointer dereference when splitting huge pages (folios) under certain conditions like shmem folios in the swap cache and truncated folios. The fix involved adding a check to ensure the mapping pointer is not NULL before accessing its flags.

Impact Analysis

The NULL pointer dereference can cause the Linux kernel to crash or become unstable when handling huge pages under specific conditions. This can lead to system crashes or denial of service, impacting system availability and reliability.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-68293. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart