Linux Kernel Out-of-Bounds Shift Vulnerability in TLB Invalidation

Vulnerability

A vulnerability in the Linux kernel's Direct Rendering Manager (DRM) component, specifically within the Xe graphics driver, has been addressed. The issue arose during Translation Lookaside Buffer (TLB) invalidation when the specified range exceeded a certain limit, leading to an out-of-bounds shift error. This error was detected by the Undefined Behavior Sanitizer (UBSAN), indicating that the shift operation attempted to use an exponent larger than what the data type could accommodate. The vulnerability could potentially be exploited in scenarios where large range invalidations are performed, causing a shift-out-of-bounds condition that could disrupt normal operations.

Impact

The vulnerability could cause a shift-out-of-bounds error, which may lead to undefined behavior in the kernel, potentially allowing for memory corruption or other unintended consequences.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Out-of-Bounds Shift Vulnerability in TLB Invalidation

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating