CVE-2025-38733

s390/mm: Do not map lowcore with identity mapping

Published: 9/5/2025 Last updated: 9/29/2025 Reserved: 4/16/2025

In the Linux kernel, the following vulnerability has been resolved: s390/mm: Do not map lowcore with identity mapping Since the identity mapping is pinned to address zero the lowcore is always also mapped to address zero, this happens regardless of the relocate_lowcore command line option. If the option is specified the lowcore is mapped twice, instead of only once. This means that NULL pointer accesses will succeed instead of causing an exception (low address protection still applies, but covers only parts). To fix this never map the first two pages of physical memory with the identity mapping.

CNA assigner: Linux (416baaa9-dc9f-4396-8d5f-8c081fb06d67) Requested by: n/a

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (4)

Product	Vendor	Version
Linux	Linux	7.0.0
Linux	Linux	< 20210218
Linux	Linux	< 10.0.14393.7785
Linux	Linux	< 67e578c8ff2d7df03bf8ca9a7f5436b1796f6ad1

CVE-2025-38733

s390/mm: Do not map lowcore with identity mapping

Opam packages affected (27)

Products affected (4)

References (6)