58 matches found
The vulnerabilities of the iommu/vt-d components of the Linux operating system’s kernel, which allow a hacker to cause a service failure
The vulnerability of the iommu/vt-d components in the Linux operating system’s kernel is related to the lack of memory release after the effective lifespan of these components has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...
SUSE CVE-2024-50001
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix error path in multi-packet WQE transmit Remove the erroneous unmap in case no DMA mapping was established The multi-packet WQE transmit code attempts to obtain a DMA mapping for the skb. This could fail, e.g. under...
kernel: hw:amd:IOMMU improperly handles certain special address leading to a loss of guest integrity
A flaw was found in the way AMD IOMMU handles certain special address ranges with invalid device table entries DTEs, which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity...
The vulnerability of the x86 IOMMU Identity Mapping component in the cross-platform hypervisor Xen allows a attacker to influence the confidentiality, integrity, and accessibility of the system.
The vulnerability of the x86 IOMMU Identity Mapping component in the cross-platform hypervisor Xen is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a potential fault handling error and system crash vulnerability in the iommu component...
DEBIAN-CVE-2022-48904
In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fix I/O page table memory leak The current logic updates the I/O page table mode for the domain before calling the logic to free memory used for the page table. This results in IOMMU page table memory leak, and can be...
DEBIAN-CVE-2022-48796
In the Linux kernel, the following vulnerability has been resolved: iommu: Fix potential use-after-free during probe Kasan has reported the following use after free on dev-iommu. when a device probe fails and it is in process of freeing dev-iommu in deviommufree function, a deferredprobeworkfunc...
UBUNTU-CVE-2024-35843
In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Use device rbtree in iopf reporting path The existing I/O page fault handler currently locates the PCI device by calling pcigetdomainbusandslot. This function searches the list of all PCI devices until the desired...
ALPINE-CVE-2023-46839
PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...
kernel: iommu/vt-d: Clean up si_domain in the init_dmars() error path
A memory leak flaw was found in the Linux kernel's Intel VT-d IOMMU driver in the initialization error path. A local user can trigger this issue when the initdmars function fails during IOMMU setup, causing the sidomain memory to remain allocated without being freed. This results in a permanent...
kernel: iommu/vt-d: avoid invalid memory access via node_online(NUMA_NO_NODE)
In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: avoid invalid memory access via nodeonlineNUMANONODE KASAN reports: 4.668325 T0 BUG: KASAN: wild-memory-access in dmarparseonerhsa arch/x86/include/asm/bitops.h:214 arch/x86/include/asm/bitops.h:226...
CVE-2021-26348
Failure to flush the Translation Lookaside Buffer TLB of the I/O memory management unit IOMMU may lead an IO device to write to memory it should not be able to access, resulting in a potential loss of integrity...
PT-2022-9731 · Suse · Suse
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to the failure to flush the Translation Lookaside Buffer TLB of the I/O memory management unit IOMMU, which may allow an IO device ...
PT-2022-17810 · Suse · Suse
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns IOMMU: RMRR VT-d and unity map AMD-Vi handling problems. Certain PCI devices in a system might be assigned Reserved Memory Regions fo...
The vulnerability of Xen hypervisors, related to the use of memory after it is freed, allows a attacker to cause a service failure or increase their privileges.
The vulnerability of Xen hypervisors relates to the use of memory after it is freed during the processing of input/output page tables in the IOMMU Input/Output Memory Management Unit memory management unit. Exploiting this vulnerability can allow an attacker to cause service failures or increase...
kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks
A flaw was found in the Linux kernel’s KVM implementation, where improper handing of the VMIO|VMPFNMAP VMAs in KVM bypasses RO checks and leads to pages being freed while still accessible by the VMM and guest. This flaw allows users who can start and control a VM to read/write random pages of...
UBUNTU-CVE-2019-17345
An issue was discovered in Xen 4.8.x through 4.11.x allowing x86 PV guest OS users to cause a denial of service because mishandling of failed IOMMU operations causes a bug check during the cleanup of a crashed guest...
DEBIAN-CVE-2018-19961
An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because TLB flushes do not always occur after IOMMU mapping changes...