Primary

Context

Linux Kernel io_uring Multishot Receive Overflow Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's io_uring implementation for multishot receive operations can lead to performance issues and, in severe cases, cause a task to run out of memory. This vulnerability arises from allowing multishot receive completion queue entries to overflow, which could disrupt normal processing and resource management.

Impact

Exploitation of this vulnerability could lead to excessive memory consumption by a task, potentially causing it to run out of memory and fail.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched version are available on the official Linux kernel website.

Added: Dec 24, 2025, 12:39 PM

Updated: Dec 24, 2025, 12:39 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

7.7

relevance

1.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

7.7

relevance

1.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel io_uring Multishot Receive Overflow Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating