Linux Kernel Integer Overflow Vulnerability in printk LOG_BUF_LEN_MAX Definition

Vulnerability

A signed integer overflow vulnerability has been identified in the Linux kernel's printk function, specifically when defining the maximum log buffer length. This vulnerability arises from shifting a value on a 32-bit integer, which causes the signed integer to overflow and lead to undefined behavior. The issue has been addressed by casting the value to an unsigned 32-bit integer before the shift, ensuring that the operation is well-defined and preventing any potential overflow.

Impact

Exploitation of this vulnerability could lead to undefined behavior in the Linux kernel, potentially causing instability or unexpected actions within the system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Integer Overflow Vulnerability in printk LOG_BUF_LEN_MAX Definition

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating