Linux Kernel XDP_SHARED_UMEM Packet Corruption Vulnerability

Vulnerability

A vulnerability in the Linux kernel's XDP_SHARED_UMEM mode has been fixed, addressing an issue where packets were corrupted for the second and any subsequent sockets bound to the same user memory. This problem did not affect the first socket. The corruption occurred because the initialization of DMA addresses for the pre-populated xsk buffer pool entries was only completed for the first socket, leaving others uninitialized. The vulnerability has been resolved by ensuring that DMA addresses in the xsk buffer pool are populated for every socket bound to the same user memory.

Impact

Exploitation of this vulnerability led to packet corruption in the XDP_SHARED_UMEM mode, causing issues for sockets beyond the first one bound to the same user memory.

Added: Jun 18, 2025, 9:26 PM

Updated: Jun 18, 2025, 9:26 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel XDP_SHARED_UMEM Packet Corruption Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating