Linux Kernel Binfmt Flat Integer Overflow Vulnerability on 32-Bit Systems

Vulnerability

An integer overflow vulnerability has been identified in the Linux kernel's binary format (binfmt) flat handler, specifically on 32-bit systems. The issue arises because the 'relocs' count is not properly validated, leading to incorrect calculations of the 'full_data' size. While most sizes and counts are limited to 256MB, this flaw can cause the 'full_data' calculation to be erroneous, potentially allowing for memory-related exploits.

Impact

Exploitation of this vulnerability could lead to memory corruption or other undefined behavior, commonly associated with integer overflow issues, such as arbitrary code execution or causing a denial-of-service condition.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Binfmt Flat Integer Overflow Vulnerability on 32-Bit Systems

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating