Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iommufd: Do not add the same hwpt to the ioas-hwptlist twice. The hwpt is only added to the hwptlist during its creation; it is never added again. This issue seems to be leftover from previous revisions. Adding an hwpt twice may...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the iommu/amd driver’s concurrent TLB failure and unlocked sequence allocation, potentially leadi...

CVE-2023-53801

CVE-2023-53801 concerns a Linux kernel issue in the iommu/sprd driver where a DMA buffer used for address mapping is not released when an IOMMU domain is freed, causing a memory leak. The provided description from the initial document states that the vulnerability was resolved by releasing the DM...

PT-2025-49661

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the iommu/sprd driver when attaching to a domain. The driver allocates a DMA buffer used to store an address mapping table, but fails to release this buffer when...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the sprd iommu driver not freeing DMA buffers, which could lead to a memory leak...

Linux Distros Unpatched Vulnerability : CVE-2025-37748

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iommu/mediatek: Fix NULL pointer deference in mtkiommudevicegroup Currently, mtkiommu calls...

Vulnerability of the amd_iommu_probe_finalize() function in the drivers/iommu/amd/iommu.c module – Linux kernel’s IOMMU support driver, which allows a hacker to cause a service failure

Vulnerability of the amdiommuprobefinalize function in the drivers/iommu/amd/iommu.c module – Linux’s IOMMU support driver relies on the assignment of the NULL pointer. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

CVE-2025-37837

In the Linux kernel, the following vulnerability has been resolved: iommu/tegra241-cmdqv: Fix warnings due to dmamfreecoherent Two WARNINGs are observed when SMMU driver rolls back upon failure: arm-smmu-v3.9.auto: Failed to register iommu arm-smmu-v3.9.auto: probe with driver arm-smmu-v3 failed...

CVE-2025-37837 iommu/tegra241-cmdqv: Fix warnings due to dmam_free_coherent()

In the Linux kernel, the following vulnerability has been resolved: iommu/tegra241-cmdqv: Fix warnings due to dmamfreecoherent Two WARNINGs are observed when SMMU driver rolls back upon failure: arm-smmu-v3.9.auto: Failed to register iommu arm-smmu-v3.9.auto: probe with driver arm-smmu-v3 failed...

Vulnerability of the mtk_iommu_hw_init() function in the drivers/iommu/mtk_iommu.c module – This driver for Linux’s IOMMU kernel allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the mtkiommuhwinit function in the drivers/iommu/mtkiommu.c module – Linux’s IOMMU kernel support driver is vulnerable due to the use of the NULL pointer assignment. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

CVE-2025-21876

CVE-2025-21876 - Linux kernel iommu/vt-d : The issue arises from a code path in enable_drhd_fault_handling() that traverses the DMAR drhd list without holding the required dmar_global_lock, triggering a “suspicious RCU usage” warning. The fix (commit d74169ceb0d2) ensures dmar_global_lock is held...

Linux Distros Unpatched Vulnerability : CVE-2024-35957

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix WARNON in iommu probe path Commit 1a75cc710b95 iommu/vt-d: Use rbtree to tra...

CVE-2022-49083

In the Linux kernel, the following vulnerability has been resolved: iommu/omap: Fix regression in probe for NULL pointer dereference Commit 3f6634d997db "iommu: Use right way to retrieve iommuops" started triggering a NULL pointer dereference for some omap variants: iommuprobedevice from...

kernel: iommu: Fix potential use-after-free during probe

A vulnerability was found in the Linux kernel's IOMMU driver, where the deviommufree function can lead to a use-after-free error. This occurs when a device probe fails while simultaneously accessing dev-iommu-fwspec in the ofiommuconfigure path. As a result, this vulnerability can potentially cau...

CVE-2024-50001 net/mlx5: Fix error path in multi-packet WQE transmit

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix error path in multi-packet WQE transmit Remove the erroneous unmap in case no DMA mapping was established The multi-packet WQE transmit code attempts to obtain a DMA mapping for the skb. This could fail, e.g. under...

CVE-2024-50001 net/mlx5: Fix error path in multi-packet WQE transmit

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix error path in multi-packet WQE transmit Remove the erroneous unmap in case no DMA mapping was established The multi-packet WQE transmit code attempts to obtain a DMA mapping for the skb. This could fail, e.g. under...

kernel: iommu/amd: Add a length limitation for the ivrs_acpihid command-line parameter

A stack buffer overflow vulnerability was found in the Linux kernel's AMD IOMMU driver. The parseivrsacpihid function uses sscanf to parse the ivrsacpihid kernel command-line parameter without specifying a field width limit. An overly long ACPI HID string can overflow the fixed-size acpiid buffer...

DEBIAN-CVE-2024-35957

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix WARNON in iommu probe path Commit 1a75cc710b95 "iommu/vt-d: Use rbtree to track iommu probed devices" adds all devices probed by the iommu driver in a rbtree indexed by the source ID of each device. It assumes tha...

kernel: iommu/amd: Improve page fault error reporting

A flaw was found in the Linux kernel's AMD IOMMU driver iommu/amd when handling page fault error reporting. The kernel's page fault handler for the IOMMU domain incorrectly assumed that the domain was always set up, leading to a NULL pointer dereference in the iommu/amd: Improve page fault error...

kernel: iommu/amd: Add a length limitation for the ivrs_acpihid command-line parameter

A stack buffer overflow vulnerability was found in the Linux kernel's AMD IOMMU driver. The parseivrsacpihid function uses sscanf to parse the ivrsacpihid kernel command-line parameter without specifying a field width limit. An overly long ACPI HID string can overflow the fixed-size acpiid buffer...