Linux Kernel GPIO Virtuser Out-of-Bound Write Vulnerability

Vulnerability

A vulnerability in the Linux kernel's GPIO virtuser component could lead to an out-of-bounds write. This issue arises because the 'count' of written characters can be truncated to fit the maximum available space when the caller exceeds it. The vulnerability has been addressed by ensuring that the input size does not surpass the buffer capacity and by adding a zero termination afterwards.

Impact

Exploitation of this vulnerability could lead to memory corruption by allowing data to be written outside the intended buffer boundaries.

Added: Jun 18, 2025, 10:19 AM

Updated: Jun 18, 2025, 10:19 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel GPIO Virtuser Out-of-Bound Write Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating