Volerion logoVolerion
Volerion logoVolerion

Linux Kernel UFX_IOCTL_REPORT_DAMAGE Improper Memory Handling Vulnerability

Vulnerability

A vulnerability exists in the Linux kernel's framebuffer device (fbdev) driver for SMSC UFX devices. The issue arises in the UFX_IOCTL_REPORT_DAMAGE ioctl, which fails to correctly copy data from userspace to kernelspace. Instead, it directly references userspace memory, potentially leading to problems if invalid data is provided. This vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability could lead to kernel memory being accessed with invalid data, which may cause instability or unexpected behavior in the system.

Reproduction

To reproduce this vulnerability, a client must send an ioctl command UFX_IOCTL_REPORT_DAMAGE with a pointer to user memory that contains invalid data. The kernel will then access this memory without proper validation, leading to potential issues.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed.

Added: Mar 4, 2026, 3:20 PM
Updated: Mar 4, 2026, 6:30 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
3.5
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.