Linux Kernel Spectre V1 Vulnerability Mitigation in fib_metrics_match()

Vulnerability

A vulnerability in the Linux kernel's IPv4 handling has been addressed. This issue involved a potential Spectre v1 vulnerability in the fib_metrics_match() function, where the 'type' variable could be misused as an array index. The flaw risked allowing CPU speculation to leak kernel memory contents. The vulnerability has been resolved by implementing measures to prevent such speculative execution.

Impact

Exploitation of this vulnerability could have led to unauthorized access to kernel memory, potentially allowing for information leakage.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Spectre V1 Vulnerability Mitigation in fib_metrics_match()

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating