Primary

Context

Linux Kernel S3FB Driver Memory Corruption Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's S3FB framebuffer driver can lead to memory corruption. In the function 's3fb_set_par()', the 'screen_size' value is derived from user input. If an improper value is provided, 'screen_size' may exceed 'info->screen_size', causing a page fault error. This issue arises from a lack of proper validation on the 'screen_size' before it is used, potentially leading to unauthorized memory access.

Impact

Exploitation of this vulnerability causes a page fault error due to improper memory access, which can disrupt normal system operations.

Remediation

Users can apply the latest patches available in the Linux kernel Git repository to address this vulnerability.

Added: Jun 18, 2025, 5:27 PM

Updated: Jun 18, 2025, 5:27 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel S3FB Driver Memory Corruption Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating