CVE-2025-37908

Published: May 20, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: mm, slab: clean up slab->obj_exts always When memory allocation profiling is disabled at runtime or due to an error, shutdown_mem_profiling() is called: slab->obj_exts which previously allocated remains. It won't be cleared by unaccount_slab() because of mem_alloc_profiling_enabled() not true. It's incorrect, slab->obj_exts should always be cleaned up in unaccount_slab() to avoid following error: [...]BUG: Bad page state in process... .. [...]page dumped because: page still charged to cgroup [[email protected]: fold need_slab_obj_ext() into its only user]

Vendor	Product	Versions
Linux	Linux	affected `21c690a349baab895dc68ab70d291e1598d7109d - < dab2a13059a475b6392550f882276e170fe2fcff` affected `21c690a349baab895dc68ab70d291e1598d7109d - < 01db0e1a48345aa1937f3bdfc7c7108d03ebcf7e` affected `21c690a349baab895dc68ab70d291e1598d7109d - < be8250786ca94952a19ce87f98ad9906448bc9ef`
Linux	Linux	affected `6.10` unaffected `0 - < 6.10` unaffected `6.12.28 - <= 6.12.` unaffected `6.14.6 - <= 6.14.` unaffected `6.15 - <= *`

References

https://git.kernel.org/stable/c/dab2a13059a475b6392550f882276e170fe2fcff

https://git.kernel.org/stable/c/01db0e1a48345aa1937f3bdfc7c7108d03ebcf7e

https://git.kernel.org/stable/c/be8250786ca94952a19ce87f98ad9906448bc9ef

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-37908

Description

Affected Products

References