Linux Kernel Integer Overflow Vulnerability in perf/x86/amd Handling Shift Operations

Vulnerability

A potential integer overflow vulnerability has been identified in the Linux kernel's perf subsystem for AMD processors. The issue arises from the left shift of a 32-bit integer constant, which is processed using 32-bit arithmetic and then passed as a 64-bit argument to a function. If the shift amount is 32 or more, this can result in an overflow. The vulnerability has been addressed by modifying the shift operation to use the BIT_ULL macro, ensuring proper handling of the value as an unsigned long long.

Impact

Exploitation of this vulnerability could lead to an integer overflow, potentially allowing for unexpected behavior or manipulation of data within the affected component.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Integer Overflow Vulnerability in perf/x86/amd Handling Shift Operations

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating