Impact
The bug occurs in the mincore subsystem of the Linux kernel. When a kernel is built without swap support but with migration or memory failure features enabled, the code that checks for swap entries runs the swap guard before it can detect those non‑swap entries. This causes the mincore PTE range routine to emit a spurious nonresident even though they are resident. The impact is a false warning and misleading residency status; it does not immediately disclose data but can confuse monitoring tools and userland programs that rely on accurate residency information.
Affected Systems
All Linux kernel builds that lack CONFIG_SWAP but include CONFIG_MIGRATION or CONFIG_MEMORY_FAILURE may be vulnerable. The exact kernel version is not specified, but the fix is tied to patch commits referenced in the advisory. Systems running kernels prior to the application of the patch may exhibit the bug.
Risk and Exploitability
The CVSS score is not provided, and EPSS is unavailable, indicating no publicly documented exploit tendency. The vulnerability is local: an attacker would need to execute code on the target or invoke the mincore system call to observe the false status. Because the flaw only triggers a warning and does not compromise confidentiality or integrity, the overall risk is low. The bug is not listed in CISA KEV.
OpenCVE Enrichment