Linux Kernel XSK Overflow Vulnerability in XDP User Memory Registration

Vulnerability

A vulnerability in the Linux kernel's XSK (eXpress Data Path) implementation has been addressed. The issue was related to the absence of a proper overflow check in the XDP user memory registration process. The vulnerability allowed the number of memory chunks to exceed the maximum value of a 32-bit unsigned integer, potentially leading to unexpected behavior. The fix ensures that an overflow is detected and an error is returned, while also removing an unnecessary type cast that was applied to the memory chunk count.

Impact

Exploitation of this vulnerability could lead to a denial of service by causing an overflow in the user memory registration process, which could disrupt normal kernel operations or data handling.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel XSK Overflow Vulnerability in XDP User Memory Registration

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating