Linux Kernel Out-of-Bounds Write Vulnerability in Venus Media Component

Vulnerability

An out-of-bounds write vulnerability has been identified in the Linux kernel's Venus media component, specifically within the HFI (Hardware Frame Interface) handling. The issue arises because the 'buf_size' parameter, located in shared memory, can be manipulated by a malicious user. This manipulation allows for an out-of-bounds write when the specified size exceeds the actual data buffer allocated for the SFR (Streaming Frame Rate) region. The vulnerability has been addressed by adding a check to ensure that the size does not exceed the allocated buffer capacity.

Impact

Exploitation of this vulnerability could lead to arbitrary memory writes, potentially causing memory corruption or allowing for the execution of arbitrary code.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Out-of-Bounds Write Vulnerability in Venus Media Component

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating