Linux Kernel Dynamic Minor Management Vulnerability

Vulnerability

A vulnerability in the Linux kernel's handling of dynamic minor numbers has been addressed. The issue arose because the 'misc_minor_alloc' function allocated IDs using the ID allocator (IDA) only for 'MISC_DYNAMIC_MINOR' minors, while 'misc_minor_free' consistently freed IDs using 'ida_free'. This discrepancy led to a warning indicating that 'ida_free' was called for an ID that was not allocated. The vulnerability has been resolved by modifying 'misc_minor_alloc' to allocate IDs from the IDA for all minors within the dynamic range.

Impact

The vulnerability could lead to a warning being generated when 'ida_free' is called for an unallocated ID, indicating a mismatch in the minor number management.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Dynamic Minor Management Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating