Primary

Context

Linux Kernel Asymmetric Key Handling Integer Overflow Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's handling of asymmetric keys can lead to a buffer overflow. This issue arises from potential integer overflows when adding the lengths of binary blobs and the size of an asymmetric_key_id structure. The vulnerability allows for the copying of data from malicious X.509 certificate fields that may be excessively large, such as ASN.1 INTEGER serial numbers and issuer names. The problem has been addressed by using check_add_overflow() to prevent the overflow and returning an error pointer in case of an overflow condition.

Impact

Exploitation of this vulnerability could lead to a buffer overflow, which may be exploited to execute arbitrary code or cause a denial-of-service condition.

Added: Dec 24, 2025, 11:27 AM

Updated: Dec 24, 2025, 11:27 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

3.1

exploitability

5.3

remediation

7.7

relevance

1.7

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

3.1

exploitability

5.3

remediation

7.7

relevance

1.7

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Asymmetric Key Handling Integer Overflow Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating