Linux Kernel CSD Lock Vulnerability in Sparse Memory Handling

Vulnerability

A vulnerability in the Linux kernel's handling of the csdlock_debug boot parameter has been addressed. The issue arises when the parameter is parsed by the early_param() function, enabling the csd_lock_wait feature. This feature causes a kernel panic on arm64 systems with specific configuration options. The root of the problem lies in a NULL dereference caused by the timing of the parameter parsing, which occurs before the necessary memory sections are initialized. This vulnerability also affects powerpc architectures for similar reasons.

Impact

The vulnerability leads to a NULL pointer dereference, causing a kernel panic.

Added: Jun 18, 2025, 5:40 PM

Updated: Jun 18, 2025, 5:40 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel CSD Lock Vulnerability in Sparse Memory Handling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating