Linux Kernel Netlink Bounds-Check Vulnerability in Struct nlmsgerr Creation

Vulnerability

A vulnerability in the Linux kernel's netlink implementation allowed for improper bounds-checking during the creation of struct nlmsgerr. This issue arose in anticipation of FORTIFY_SOURCE applying bounds-checks on memcpy operations. The vulnerability has been addressed by replacing the __nlmsg_put function with nlmsg_put, and by clarifying the bounds-checking process to manage memcpy operations across a composite flexible array structure. This change prevents a potential runtime warning about field-spanning writes.

Impact

The vulnerability could have led to memory corruption issues by allowing improper handling of data across structured fields, potentially causing field-spanning write errors.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Netlink Bounds-Check Vulnerability in Struct nlmsgerr Creation

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating