2344687 – (CVE-2025-21691) CVE-2025-21691 kernel: cachestat: fix page cache statistics permission checking

Bug 2344687 (CVE-2025-21691) - CVE-2025-21691 kernel: cachestat: fix page cache statistics permission checking

Summary: CVE-2025-21691 kernel: cachestat: fix page cache statistics permission checking

Keywords:
Status:	NEW
Alias:	CVE-2025-21691
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-02-10 17:01 UTC by OSIDB Bzimport
Modified:	2025-02-12 05:55 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-02-10 17:01:23 UTC

In the Linux kernel, the following vulnerability has been resolved:

cachestat: fix page cache statistics permission checking

When the 'cachestat()' system call was added in commit cf264e1329fb
("cachestat: implement cachestat syscall"), it was meant to be a much
more convenient (and performant) version of mincore() that didn't need
mapping things into the user virtual address space in order to work.

But it ended up missing the "check for writability or ownership" fix for
mincore(), done in commit 134fca9063ad ("mm/mincore.c: make mincore()
more conservative").

This just adds equivalent logic to 'cachestat()', modified for the file
context (rather than vma).

Comment 1 Robb Gatica 2025-02-10 18:52:40 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025021055-CVE-2025-21691-2bd2@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.