Linux Kernel RDMA/hfi1 Integer Multiplication Overflow Vulnerability

Vulnerability

A vulnerability in the Linux kernel's RDMA/hfi1 component could lead to integer multiplication overflow errors. This issue arises when values of different types are multiplied, potentially causing an overflow even if the result is stored in a larger type, as the conversion occurs after the multiplication. The vulnerability affects the inter-packet delay calculation, where the overflow could result in incorrect values. The issue has been addressed by modifying the calculation to ensure one operand is a 64-bit unsigned integer, preventing the overflow by promoting the other operand accordingly.

Impact

Exploitation of this vulnerability could lead to incorrect calculations in the inter-packet delay, potentially causing performance issues or disruptions in data transmission.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel RDMA/hfi1 Integer Multiplication Overflow Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating