Linux Kernel DRM/Sun4i DSI Packet Size Underflow Vulnerability

Vulnerability

A vulnerability in the Linux kernel's DRM/Sun4i DSI component could lead to a packet size underflow. This issue arises because packet overhead is subtracted using unsigned arithmetic, which can underflow and wrap around to near the maximum value of an unsigned 16-bit integer when a short sync pulse is present. The vulnerability has been addressed by changing the subtraction to signed arithmetic, allowing for proper handling of negative values. The same adjustment was applied to other timing calculations, despite those subtractions being less likely to cause an underflow.

Impact

Exploitation of this vulnerability could lead to incorrect packet size calculations, potentially causing memory corruption or other unintended behavior in the DSI interface.

Added: Jun 18, 2025, 7:27 PM

Updated: Jun 18, 2025, 7:27 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel DRM/Sun4i DSI Packet Size Underflow Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating