Linux Kernel BlueField SOC Invalid Buffer Alignment Vulnerability in mlxbf-bootctl Driver

Vulnerability

A vulnerability has been identified in the Linux kernel's mlxbf-bootctl driver, specifically when used on BlueField SOC. The issue arises because the driver calls 'sysfs_emit()' with a buffer pointer that is not properly aligned to the beginning of the page. This misalignment triggers a warning, as the 'sysfs_emit()' function expects the buffer to be aligned. The driver should utilize 'sysfs_emit_at()' to correctly handle non-zero offsets in the destination buffer.

Impact

The vulnerability can lead to warnings being generated during kernel operation, indicating improper buffer alignment. However, this misalignment could potentially be exploited in a way that affects the driver's interaction with the sysfs filesystem, where such misalignments might be leveraged under certain conditions.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel BlueField SOC Invalid Buffer Alignment Vulnerability in mlxbf-bootctl Driver

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating