Linux Kernel Out-of-Bounds Array Access Vulnerability in ARM64 MOPS Handling

Vulnerability

A vulnerability in the Linux kernel's ARM64 architecture has been addressed, concerning the handling of the MOPS exception. The issue arises during SET* operations when the source register is XZR (register 31), leading to a potential out-of-bounds array access error. This vulnerability was introduced in a specific commit, where the normal safeguard against such access was removed.

Impact

Exploitation of this vulnerability could lead to a out-of-bounds array access, potentially causing undefined behavior or memory corruption.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Out-of-Bounds Array Access Vulnerability in ARM64 MOPS Handling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating