Linux Kernel dm Ioctl Race Condition Vulnerability Leading to Buffer Mismanagement

Vulnerability

A vulnerability in the Linux kernel's device-mapper (dm) ioctl handling has been addressed. The issue arises from a race condition between version listing and module loading, which can lead to improper buffer management. The 'dm_target_iterate' function is used to estimate required buffer space and to fill it with data. However, the second call can overwrite data if the buffer is not properly sized, causing truncation. This vulnerability has been fixed by ensuring that the data is written only up to the allocated buffer size, preventing overflow.

Impact

The vulnerability could lead to a buffer management error, where data is truncated, potentially causing incorrect behavior in applications relying on this ioctl interface.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel dm Ioctl Race Condition Vulnerability Leading to Buffer Mismanagement

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating