Primary

Context

Linux Kernel SCSI MPI3MR Driver Bitmap Size Management Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's SCSI MPI3MR driver allows for out-of-bounds memory access during firmware downloads to the eHBA-9600. This issue arises because the driver calculates bitmap sizes in bytes, while the corresponding helper functions expect sizes in bits. The discrepancy leads to memory access violations, causing a 'slab-out-of-bounds' error. The vulnerability has been addressed by revising the bitmap size management to use bits instead of bytes, and by updating the related memory allocation and handling functions accordingly.

Impact

The vulnerability could be exploited to cause a 'slab-out-of-bounds' memory access error, potentially leading to memory corruption.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.

Added: Sep 18, 2025, 3:20 PM

Updated: Sep 18, 2025, 3:20 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel SCSI MPI3MR Driver Bitmap Size Management Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating