CVE-2025-38029 is a Linux kernel vulnerability related to KASAN (Kernel Address Sanitizer) that involves a sleepable page allocation occurring in an atomic context. The issue has been addressed with an upstream kernel patch that removes the problematic allocation path. Discussions on WindowsForum.com focus on which Microsoft products, particularly Azure Linux, may include the affected code and require remediation. The tag covers the vulnerability details, the patch, and potential implications for Microsoft's Linux-based offerings.
-
A recently assigned Linux-kernel vulnerability, CVE-2025-38029 — described as “kasan: avoid sleepable page allocation from atomic context” — has prompted an upstream kernel patch that removes a sleep-prone allocation in a KASAN-related path and has raised questions about which Microsoft...