Linux Kernel Out-of-Bounds Vulnerability in Software Node Reference Handling

Vulnerability

A vulnerability in the Linux kernel's software node management has been addressed. The issue was related to an out-of-bounds (OOB) check in the function 'software_node_get_reference_args()'. This function attempts to access the 'index-th' element of a property, requiring a minimum of '(index + 1) * sizeof(*ref)' bytes. However, the existing OOB check did not reliably ensure this requirement, potentially leading to out-of-bounds access for malformed properties. The vulnerability has been fixed by improving the OOB check to '((index + 1) * sizeof(*ref) > prop->length)'.

Impact

Exploitation of this vulnerability could lead to out-of-bounds memory access, which may cause memory corruption or allow for arbitrary code execution.

Added: Jul 10, 2025, 10:50 AM

Updated: Jul 10, 2025, 10:50 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Out-of-Bounds Vulnerability in Software Node Reference Handling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating