Linux Kernel Seg6 Nexthop Address Validation Vulnerability

Vulnerability

A vulnerability in the Linux kernel's segment routing (seg6) implementation has been addressed. The issue arose because the kernel did not properly validate the length of nexthop addresses, allowing user space to specify a shorter length than required. This discrepancy could lead to the kernel accessing uninitialized memory. The vulnerability has been fixed by ensuring that the provided length matches the specified length exactly.

Impact

Exploitation of this vulnerability could result in the kernel reading uninitialized memory, which may lead to information disclosure or other unintended behavior.

Added: Jul 10, 2025, 8:38 AM

Updated: Jul 10, 2025, 8:38 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Seg6 Nexthop Address Validation Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating