Primary

Context

Linux Kernel io_uring Buffer Length Read Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's io_uring implementation has been addressed. The issue involved improper handling of buffer lengths mapped from userspace, which could lead to inconsistent reads. The vulnerability required ensuring that the buffer length was read safely and stably to prevent changes during processing. Additionally, the mechanism for committing buffers in the ring could overlook zero-sized buffers, halting progress. This vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability could lead to incorrect handling of io_uring buffer lengths, potentially causing issues in buffer management and processing.

Added: Sep 16, 2025, 4:05 PM

Updated: Sep 16, 2025, 4:05 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel io_uring Buffer Length Read Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating