Primary

Context

Linux Kernel Ring Buffer Slab-Out-Of-Bounds Vulnerability Allowing Memory Corruption

Vulnerability

A vulnerability in the Linux kernel's handling of the ring buffer can lead to a slab-out-of-bounds memory access, causing memory corruption. This issue arises from an overflow in the calculation of the number of pages, which fails to account for certain conditions, allowing for improper memory access. The vulnerability has been reported in version 6.13.0-rc2.

Impact

Exploitation of this vulnerability leads to a slab-out-of-bounds memory access, causing memory corruption.

Reproduction

The vulnerability can be reproduced by writing a value to the 'buffer_size_kb' file in the tracing subsystem, then opening the 'trace_pipe_raw' file for reading. After that, the 'mmap' system call can be used to map a region of memory, which triggers the overflow and the subsequent out-of-bounds access.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.3

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.3

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Ring Buffer Slab-Out-Of-Bounds Vulnerability Allowing Memory Corruption

Vulnerability

Impact

Reproduction

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating