Linux Kernel Netfilter ipset Bitmap Overflow Vulnerability

Vulnerability

A vulnerability in the Linux kernel's netfilter component, specifically within the ipset feature, has been addressed. The issue was an arithmetic overflow in the bitmap_ip_create() function, which could occur when the first_ip is 0, the last_ip is 0xFFFFFFFF, and the netmask is 31. In this scenario, the calculation of an expression was prone to overflow because the operands were not properly cast to a larger data type before the arithmetic operation. Although this overflow was ultimately harmless, as the resulting value was verified in the subsequent step, it still represented a potential flaw that needed correction.

Impact

The vulnerability could lead to an arithmetic overflow, allowing for unexpected behavior or manipulation of data within the ipset feature of netfilter.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Netfilter ipset Bitmap Overflow Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating