Linux Kernel Cacheinfo Out-of-Bounds Write Vulnerability in arm64 Architecture

Vulnerability

A vulnerability in the Linux kernel's cacheinfo handling for arm64 architecture allows for an out-of-bounds write to the cacheinfo array. The issue arises because the loop responsible for detecting and populating cache information includes a bounds check on the array size but fails to consider cache levels with separate data and instruction caches. This oversight can lead to improper indexing, potentially causing memory corruption.

Impact

Exploitation of this vulnerability could lead to memory corruption by allowing writes outside the intended bounds of the cacheinfo array.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Cacheinfo Out-of-Bounds Write Vulnerability in arm64 Architecture

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating