Linux Kernel Udmabuf Page Count Validation Vulnerability Leading to General Protection Fault

Vulnerability

A vulnerability in the Linux kernel's udmabuf implementation has been identified, where improper validation of user-supplied page count data can lead to a general protection fault. The issue arises because the page count is calculated from arguments provided by the user. If a user creates a udmabuf with a list size of zero, the resulting page count will also be zero. This condition causes the kmalloc_array() function to return a null pointer, leading to a general protection fault. The vulnerability has been addressed by adding validation to ensure the page count is greater than zero before passing it to kmalloc_array().

Impact

Exploitation of this vulnerability can cause a general protection fault, disrupting system operations and potentially leading to a denial of service.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Udmabuf Page Count Validation Vulnerability Leading to General Protection Fault

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating