Linux Kernel Memblock Allocation Vulnerability Leading to System Crash

Vulnerability

A vulnerability in the Linux kernel's memory management can cause a system crash. This issue arises in the x86 architecture when the physical memory start is set to 0x100000. If there is less than 4 MiB of contiguous free memory available, the kernel fails to allocate memory properly. The function 'memblock_phys_alloc_range()' returns 0 on failure, which leads to 'memblock_phys_free()' incorrectly releasing the first 4 MiB of physical memory. This flaw can cause the kernel to crash, as the memory is effectively lost. The kernel should handle this situation more gracefully, providing a meaningful error message instead of allowing the system to crash.

Impact

The vulnerability can lead to a kernel crash, causing a denial of service by making the system unresponsive or unavailable.

Added: Jun 18, 2025, 10:37 AM

Updated: Jun 18, 2025, 10:37 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Memblock Allocation Vulnerability Leading to System Crash

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating