Linux Kernel Block Cgroup Refcount Leakage Vulnerability

Vulnerability

A refcount leakage vulnerability has been identified in the Linux kernel's block cgroup implementation. The issue arises in the blkcg_fill_root_iostats() function, which iterates over the devices of a specified block class. This iteration is performed using class_dev_iter_(init|next)() but fails to properly terminate the iteration with class_dev_iter_exit(). As a result, the subsystem reference count for the block class is not correctly managed, leading to a leakage.

Impact

Exploitation of this vulnerability causes a subsystem reference count leakage, which can potentially lead to memory management issues.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Block Cgroup Refcount Leakage Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating