Linux Kernel Data Race Vulnerability in NUMA Information Display

Vulnerability

A data race vulnerability has been identified in the Linux kernel's handling of NUMA (Non-Uniform Memory Access) information. This issue arises in the 'show_numa_info' function within 'mm/vmalloc.c', where concurrent read and write operations by different CPU tasks lead to a race condition. The vulnerability allows for inconsistent data to be read, as the 'private' member of a structure is accessible to multiple CPUs simultaneously. The problem was resolved by changing the memory allocation strategy, ensuring that each operation could safely access the required data without interference.

Impact

Exploitation of this vulnerability could lead to a data race condition, causing unpredictable behavior in the NUMA information display process.

Added: Jul 25, 2025, 2:14 PM

Updated: Jul 25, 2025, 6:45 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.0

remediation

0.0

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.0

remediation

0.0

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Data Race Vulnerability in NUMA Information Display

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating