Linux Kernel Out-of-Bound Read Vulnerability in CAN UCAN Subsystem

Vulnerability

A vulnerability in the Linux kernel's CAN UCAN subsystem allows for an out-of-bounds read due to improper handling of string termination. The issue arises from a commit that replaced 'strncpy()' with 'strscpy()', which is intended to be a safer alternative. However, 'strscpy()' can read one byte beyond the intended limit if the source string is not properly null-terminated, leading to a potential information leak. This vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability could lead to unintended memory access, potentially causing information disclosure or allowing for further exploitation.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Out-of-Bound Read Vulnerability in CAN UCAN Subsystem

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating