Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix panic caused by NULL-PMD in huge_pte_offset() ERROR INFO: CPU 25 Unable to handle kernel paging request at virtual address 0x0 ... Call Trace: [<900000000023c30c>] huge_pte_offset+0x3c/0x58 [<900000000057fd4c>] hugetlb_follow_page_mask+0x74/0x438 [<900000000051fee8>] __get_user_pages+0xe0/0x4c8 [<9000000000522414>] faultin_page_range+0x84/0x380 [<9000000000564e8c>] madvise_vma_behavior+0x534/0xa48 [<900000000056689c>] do_madvise+0x1bc/0x3e8 [<9000000000566df4>] sys_madvise+0x24/0x38 [<90000000015b9e88>] do_syscall+0x78/0x98 [<9000000000221f18>] handle_syscall+0xb8/0x158 In some cases, pmd may be NULL and rely on NULL as the return value for processing, so it is necessary to determine this situation here.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.1.136, < 6.2 |
References
- https://git.kernel.org/stable/c/985f086f281b7bbb6644851e63af1a17ffff9277Patch
- https://git.kernel.org/stable/c/b427d98d55217b53c88643579fbbd8a4c351a105Patch
- https://git.kernel.org/stable/c/b5c7397b7fd125203c60b59860c168ee92291272Patch
- https://git.kernel.org/stable/c/ee084fa96123ede8b0563a1b5a9b23adc43cd50dPatch
FAQ
What is CVE-2025-38195?
CVE-2025-38195 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix panic caused by NULL-PMD in huge_pte_offset() ERROR INFO: CPU 25 Unable to handle kernel paging request at virtual...
How severe is CVE-2025-38195?
CVE-2025-38195 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-38195?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.