8 matches found
EUVD-2026-18664
In the Linux kernel, the following vulnerability has been resolved: iommu/sva: Fix crash in iommusvaunbinddevice domain-mm-iommumm can be freed by iommudomainfree: iommudomainfree mmdrop mmdrop mmpasiddrop After iommudomainfree returns, accessing domain-mm-iommumm may dereference a freed mm...
CVE-2026-23429
In the Linux kernel, the following vulnerability has been resolved: iommu/sva: Fix crash in iommusvaunbinddevice domain-mm-iommumm can be freed by iommudomainfree: iommudomainfree mmdrop mmdrop mmpasiddrop After iommudomainfree returns, accessing domain-mm-iommumm may dereference a freed mm...
CVE-2026-23429
In the Linux kernel, the following vulnerability has been resolved: iommu/sva: Fix crash in iommusvaunbinddevice domain-mm-iommumm can be freed by iommudomainfree: iommudomainfree mmdrop mmdrop mmpasiddrop After iommudomainfree returns, accessing domain-mm-iommumm may dereference a freed mm...
CVE-2026-23429
In the Linux kernel, the following vulnerability has been resolved: iommu/sva: Fix crash in iommusvaunbinddevice domain-mm-iommumm can be freed by iommudomainfree: iommudomainfree mmdrop mmdrop mmpasiddrop After iommudomainfree returns, accessing domain-mm-iommumm may dereference a freed mm...
CVE-2026-23429
The CVE-2026-23429 issue affects the Linux kernel IOMMU/SVA subsystem. The root cause is that after iommu_domain_free() returns, code may dereference domain->mm->iommu_mm, which can lead to a crash. The published fix moves the access to domain->mm->iommu_mm to before the call to iommu...
CVE-2026-23429 iommu/sva: Fix crash in iommu_sva_unbind_device()
In the Linux kernel, the following vulnerability has been resolved: iommu/sva: Fix crash in iommusvaunbinddevice domain-mm-iommumm can be freed by iommudomainfree: iommudomainfree mmdrop mmdrop mmpasiddrop After iommudomainfree returns, accessing domain-mm-iommumm may dereference a freed mm...
PT-2026-30124
In the Linux kernel, the following vulnerability has been resolved: iommu/sva: Fix crash in iommu sva unbind device domain-mm-iommu mm can be freed by iommu domain free: iommu domain free mmdrop mmdrop mm pasid drop After iommu domain free returns, accessing domain-mm-iommu mm may dereference a...
CVE-2024-35816
A vulnerability was found in the Linux kernel's FireWire OHCI driver, which could lead to a resource leak by leaving behind an interrupt request IRQ when a device is unbound. This issue may cause instability or improper handling of IRQs, potentially affecting system performance or reliability...