CVE-2025-22071
📋 TL;DR
This CVE describes a memory leak vulnerability in the Linux kernel's SPUFS (Synergistic Processing Unit File System) component. When spufs_mkdir() fails during context creation with affinity settings, the kernel fails to release a reference to a neighbor object, causing a resource leak. This affects Linux systems using the Cell Broadband Engine architecture or SPUFS functionality.
💻 Affected Systems
- Linux kernel
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Sustained exploitation could lead to kernel memory exhaustion, causing system instability, denial of service, or potential kernel crashes.
Likely Case
Gradual memory consumption over time leading to performance degradation or eventual system instability requiring reboot.
If Mitigated
Minimal impact with proper monitoring and regular system maintenance; memory pressure might be observed but not critical.
🎯 Exploit Status
Requires local access and ability to create SPUFS contexts; not a privilege escalation but a resource exhaustion vulnerability.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Fixed in kernel commits referenced in CVE (0f5cce3fc55b08ee4da3372baccf4bcd36a98396 and others)
Vendor Advisory: https://git.kernel.org/stable/c/0f5cce3fc55b08ee4da3372baccf4bcd36a98396
Restart Required: Yes
Instructions:
1. Update Linux kernel to version containing the fix commits. 2. Check with your distribution vendor for backported patches. 3. Reboot system after kernel update.
🔧 Temporary Workarounds
Disable SPUFS module
linuxPrevent loading of SPUFS kernel module if not needed
echo 'blacklist spufs' >> /etc/modprobe.d/blacklist.conf
rmmod spufs
🧯 If You Can't Patch
- Restrict local user access to systems with SPUFS functionality
- Implement monitoring for memory consumption and restart systems showing abnormal memory growth
🔍 How to Verify
Check if Vulnerable:
Check if SPUFS is loaded: lsmod | grep spufs AND check kernel version against patched versionsCheck Version:
uname -rVerify Fix Applied:
Verify kernel version includes fix commits or check with distribution vendor for patch status📡 Detection & Monitoring
Log Indicators:
- Kernel oops messages related to memory allocation failures
- System logs showing out-of-memory conditions
Network Indicators:
- None - local vulnerability only
SIEM Query:
Search for: 'Out of memory' OR 'kernel: Out of memory' OR 'oom-killer' in system logs on SPUFS-enabled systems🔗 References
- https://git.kernel.org/stable/c/0f5cce3fc55b08ee4da3372baccf4bcd36a98396
- https://git.kernel.org/stable/c/239ea3c34673b3244a499fd65771c47e5bffcbb0
- https://git.kernel.org/stable/c/410c787d89c92df4215d7b1a338e2c1a8aba6b9b
- https://git.kernel.org/stable/c/4a7448c83e117ed68597952ecaede1cebc4427a7
- https://git.kernel.org/stable/c/5a90b699844a5bb96961e5892e51cc59255444a3
- https://git.kernel.org/stable/c/829bd6139968e2e759f3928cf65ad0db1e302fe3
- https://git.kernel.org/stable/c/a333f223e555d27609f8b45d75a08e8e1d36c432
- https://git.kernel.org/stable/c/c4e72a0d75442237b6f3bcca10a7d81b89376d16
- https://git.kernel.org/stable/c/d04600f43569d48262e1328eaa1592fcefa2c19c
- https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
