Linux Kernel Folio Handling Vulnerability in Bio Management on AArch64 Architecture

Vulnerability

A vulnerability in the Linux kernel's handling of folios in the block I/O layer has been addressed. On certain architectures like AArch64, where 16GB hugepages are supported, a folio larger than 4GB can cause the 'offset' to exceed the limits of an unsigned integer. This discrepancy leads to warnings in the 'bio_add_folio_nofail()' function and results in I/O failures. The issue has been resolved by adjusting the 'page' and trimming the 'offset' to prevent overflow, allowing the folio to be added to the bio successfully.

Impact

The vulnerability could lead to I/O failures when handling large folios, causing disruptions in data processing and potentially leading to broader system performance issues.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Folio Handling Vulnerability in Bio Management on AArch64 Architecture

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating