Linux Kernel TIPC Bearer Name Attribute Length Vulnerability

Vulnerability

A vulnerability in the Linux kernel's TIPC (Transparent Inter-Process Communication) subsystem has been addressed. The issue involved improper validation of attribute lengths for bearer names, which could lead to the use of uninitialized values. This vulnerability was identified during KMSAN (Kernel Memory Sanitizer) testing, where it was found that the TIPC_NLA_BEARER_NAME attribute could be exploited due to insufficient length checks, potentially allowing for the introduction of 'illegal names' in printed messages.

Impact

Exploitation of this vulnerability could lead to the use of uninitialized values, which may cause undefined behavior in the kernel.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel TIPC Bearer Name Attribute Length Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating