Linux Kernel vhost-scsi Vulnerability in Log Management

Vulnerability

A vulnerability in the Linux kernel's vhost-scsi component has been addressed. The issue arose because the completion path could access the vq->log_base variable when vq->log_used was already set to false. This created a scenario where invalid memory writes could occur to QEMU userspace, potentially leading to memory corruption. The problem was caused by improper synchronization between the logging mechanism and the associated mutex, allowing for unsafe access to user-space memory.

Impact

Exploitation of this vulnerability could lead to memory corruption in QEMU userspace, allowing for invalid memory writes that could be exploited to cause further issues, such as arbitrary code execution or creating a denial-of-service condition by crashing the QEMU process.

Added: Jun 18, 2025, 10:33 AM

Updated: Jun 18, 2025, 10:33 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel vhost-scsi Vulnerability in Log Management

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating