Linux Kernel PCI Bridge Framebuffer Relocation Vulnerability

Vulnerability

A vulnerability in the Linux kernel related to improper handling of framebuffer memory addresses for PCI graphics devices can lead to invalid access to I/O memory. During boot, firmware may assign different memory offsets to PCI host bridges, relocating framebuffer addresses as seen by the kernel. This issue affects several Linux kernel versions. The vulnerability has been addressed by updating the screen_info structure to reflect the correct framebuffer locations after relocation, ensuring proper access to the I/O memory resources of PCI graphics devices.

Impact

The vulnerability could cause invalid access to I/O memory, potentially leading to undefined behavior or system instability.

Added: Jul 25, 2025, 4:22 PM

Updated: Jul 25, 2025, 4:22 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel PCI Bridge Framebuffer Relocation Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating