CVE - CVE-2025-37859

CVE-ID
CVE-2025-37859	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: page_pool: avoid infinite loop to schedule delayed worker We noticed the kworker in page_pool_release_retry() was waken up repeatedly and infinitely in production because of the buggy driver causing the inflight less than 0 and warning us in page_pool_inflight()[1]. Since the inflight value goes negative, it means we should not expect the whole page_pool to get back to work normally. This patch mitigates the adverse effect by not rescheduling the kworker when detecting the inflight negative in page_pool_release_retry(). [1] [Mon Feb 10 20:36:11 2025] ------------[ cut here ]------------ [Mon Feb 10 20:36:11 2025] Negative(-51446) inflight packet-pages ... [Mon Feb 10 20:36:11 2025] Call Trace: [Mon Feb 10 20:36:11 2025] page_pool_release_retry+0x23/0x70 [Mon Feb 10 20:36:11 2025] process_one_work+0x1b1/0x370 [Mon Feb 10 20:36:11 2025] worker_thread+0x37/0x3a0 [Mon Feb 10 20:36:11 2025] kthread+0x11a/0x140 [Mon Feb 10 20:36:11 2025] ? process_one_work+0x370/0x370 [Mon Feb 10 20:36:11 2025] ? __kthread_cancel_work+0x40/0x40 [Mon Feb 10 20:36:11 2025] ret_from_fork+0x35/0x40 [Mon Feb 10 20:36:11 2025] ---[ end trace ebffe800f33e7e34 ]--- Note: before this patch, the above calltrace would flood the dmesg due to repeated reschedule of release_dw kworker.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/43130d02baa137033c25297aaae95fd0edc41654 URL:https://git.kernel.org/stable/c/43130d02baa137033c25297aaae95fd0edc41654 MISC:https://git.kernel.org/stable/c/7204335d1991c23fc615ab76f31f175748a578e1 URL:https://git.kernel.org/stable/c/7204335d1991c23fc615ab76f31f175748a578e1 MISC:https://git.kernel.org/stable/c/738d1812ec2e395e953258aea912ddd867d11a13 URL:https://git.kernel.org/stable/c/738d1812ec2e395e953258aea912ddd867d11a13 MISC:https://git.kernel.org/stable/c/90e089a64504982f8d62f223027cb9f903781f78 URL:https://git.kernel.org/stable/c/90e089a64504982f8d62f223027cb9f903781f78 MISC:https://git.kernel.org/stable/c/91522aba56e9fcdf64da25ffef9b27f8fad48e0f URL:https://git.kernel.org/stable/c/91522aba56e9fcdf64da25ffef9b27f8fad48e0f MISC:https://git.kernel.org/stable/c/95f17738b86fd198924d874a5639bcdc49c7e5b8 URL:https://git.kernel.org/stable/c/95f17738b86fd198924d874a5639bcdc49c7e5b8 MISC:https://git.kernel.org/stable/c/9f71db4fb82deb889e0bac4a51b34daea7d506a3 URL:https://git.kernel.org/stable/c/9f71db4fb82deb889e0bac4a51b34daea7d506a3 MISC:https://git.kernel.org/stable/c/c3c7c57017ce1d4b2d3788c1fc59e7e39026e158 URL:https://git.kernel.org/stable/c/c3c7c57017ce1d4b2d3788c1fc59e7e39026e158 MISC:https://git.kernel.org/stable/c/e74e5aa33228c5e2cb4fc80ad103541a7b7805ec URL:https://git.kernel.org/stable/c/e74e5aa33228c5e2cb4fc80ad103541a7b7805ec
Assigning CNA
kernel.org
Date Record Created
20250416	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20250416)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)