Linux Kernel LoongArch and ARM64 Out-of-Bounds Read Vulnerability in IP Checksum Code

Vulnerability

A vulnerability causing an out-of-bounds read has been identified in the Linux kernel's IP checksum handling for negative lengths. This issue, present in the LoongArch architecture, was introduced by a commit that added checksum optimization but inadvertently caused an undefined shift and out-of-bounds access. A similar problem was fixed in the ARM64 architecture, addressing the same out-of-bounds access issue.

Impact

Exploitation of this vulnerability leads to an out-of-bounds read, which can potentially be exploited to read memory locations outside the intended buffer, possibly causing information disclosure or allowing for further exploitation.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel LoongArch and ARM64 Out-of-Bounds Read Vulnerability in IP Checksum Code

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating