Primary

Context

Linux Kernel Out-of-Bounds Access Vulnerability in Intel Graphics Driver

Vulnerability

A vulnerability allowing array-index-out-of-bounds access has been identified in the Linux kernel's Intel graphics driver for Gen 11 hardware. This issue arises from a mismatch in the expected and actual number of sub-slices, potentially leading to memory corruption. The vulnerability was reported by the Undefined Behavior Sanitizer (UBSAN) while the system was running Ubuntu 6.2.0-9-generic.

Impact

Exploitation of this vulnerability could lead to memory corruption, with potential consequences such as arbitrary code execution or causing a system crash.

Reproduction

The vulnerability can be reproduced on a laptop with a Gen 11 Intel graphics card running Ubuntu 6.2.0-9-generic. The issue manifests as an array-index-out-of-bounds error in the Intel graphics driver's sub-slice management, specifically in the 'intel_sseu.c' file.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.3

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.3

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Out-of-Bounds Access Vulnerability in Intel Graphics Driver

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating