Primary

Context

Linux Kernel io_uring Early Cleanup Vulnerability in iovec Management

Vulnerability

Patched

A vulnerability in the Linux kernel's io_uring implementation can lead to a memory leak of allocated iovec structures. This issue arises when internal caches overflow, causing requests to be aborted early without properly freeing the associated iovec. The vulnerability has been addressed by reinstating a mandatory cleanup process for the iovec in such scenarios.

Impact

The vulnerability could result in a memory leak, where allocated iovec structures are not properly freed, potentially leading to increased memory usage and exhaustion of system resources.

Added: Dec 6, 2025, 10:51 PM

Updated: Dec 6, 2025, 10:51 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

7.7

relevance

1.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

7.7

relevance

1.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel io_uring Early Cleanup Vulnerability in iovec Management

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating