Volerion logoVolerion
Volerion logoVolerion

Linux Kernel SCSI MPI3MR Vulnerability in Memory Handling

Vulnerability

A vulnerability in the Linux kernel's SCSI MPI3MR driver has been addressed. The issue, identified by the Kernel Address Sanitizer (KASAN), involved incorrect memory handling by writing an improper size of data. The vulnerability was present in the stable version of the Linux kernel.

Impact

The vulnerability could lead to memory corruption by allowing an incorrect amount of data to be written, potentially causing undefined behavior in the application.

Reproduction

The vulnerability can be reproduced by using the SCSI MPI3MR driver in the Linux kernel. The issue arises when the driver manages device ports, specifically related to enclosure handles, leading to an incorrect memory write operation.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. The specific commit addressing this issue is available in the Linux kernel stable tree.

Added: Dec 24, 2025, 12:57 PM
Updated: Dec 24, 2025, 12:57 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
5.7
remediation
7.7
relevance
1.7
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.