Impact
A race condition exists in the Linux kernel when powerpc/64s PMD entries are migrated while a munmap operation is performed simultaneously. The misordered operations can lead to a VM_BUG_ON failure inside pmdp_huge_get_and_clear_full, causing a kernel panic. This race condition corresponds to CWE-367. The flaw does not directly leak data but interrupts system availability by crashing the kernel.
Affected Systems
It affects Linux kernel builds for the powerpc64le architecture. The issue was observed on kernel versions prior to the patch that introduced a fix for unmap races with PMD migration entries; specifically, versions such as 6.19.0-12136-dirty exhibited the bug before the fix was merged.
Risk and Exploitability
The CVSS score is 5.5, indicating a moderate severity. The EPSS score is < 1%, suggesting a low exploitation probability. The vulnerability is listed as not in the CISA KEV catalog, indicating no current widespread exploitation. The potential impact is a kernel crash that would deny service. Based on the description, it is inferred that an attacker could trigger the bug by performing concurrent move_pages() and munmap() operations; however this requires precise timing and is not guaranteed. The likelihood of exploitation is uncertain, but based on the need for precise timing it is inferred to be low under typical usage.
OpenCVE Enrichment