Linux Kernel v2_ext_offset Vulnerability in net/smc Component Allows Memory Access Errors

Vulnerability

A vulnerability has been identified in the Linux kernel's net/smc component, where the server improperly trusts certain fields in proposal messages received from remote clients. Specifically, the v2_ext_offset, eid_cnt, and ism_gid_cnt fields can be manipulated, potentially leading to access violations and crashes. The issue arises because the v2_ext_offset field, if exceeding a maximum value, can cause the kernel to read from incorrect memory addresses. This vulnerability has been addressed by implementing checks on these fields before they are processed.

Impact

Exploitation of this vulnerability could lead to memory access errors, causing system crashes.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel v2_ext_offset Vulnerability in net/smc Component Allows Memory Access Errors

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating