Primary

Context

Sentry Kernel IRQ Line Manipulation Vulnerability Leading to Denial-of-Service and Covert Channels

Vulnerability

A vulnerability exists in the Sentry kernel, a micro-kernel designed for high-security embedded systems, prior to version 0.4.7. Tasks with DEV or IO capabilities can improperly interact with another task's IRQ line using the __sys_int_* syscall family. This flaw can cause denial-of-service conditions and create covert channels between the affected task and the external environment.

Impact

Exploitation of this vulnerability can cause a denial-of-service condition and establish covert channels between tasks, allowing for unauthorized communication with the outside world.

Remediation

Users can upgrade to Sentry kernel version 0.4.7 or later to address this vulnerability. For those on versions prior to 0.4.7, it is recommended to limit tasks with DEV and IO capabilities to just one.

Added: Apr 18, 2026, 12:29 AM

Updated: Apr 18, 2026, 12:29 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

3.5

remediation

0.0

relevance

5.8

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

3.5

remediation

0.0

relevance

5.8

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Sentry Kernel IRQ Line Manipulation Vulnerability Leading to Denial-of-Service and Covert Channels

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating