CVE-2025-21833
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
iommu/vt-d: Avoid use of NULL after WARN_ON_ONCE
There is a WARN_ON_ONCE to catch an unlikely situation when
domain_remove_dev_pasid can't find the pasid. In case it nevertheless
happens we must avoid using a NULL pointer.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | d87731f609318a27e9aa3d01cf97798599d32839 < 68ec78beb4a3fb0877cbaaf49758c85410c05977 | affected |
| Linux | Linux | d87731f609318a27e9aa3d01cf97798599d32839 < df96876be3b064aefc493f760e0639765d13ed0d | affected |
| Linux | Linux | d87731f609318a27e9aa3d01cf97798599d32839 < 60f030f7418d3f1d94f2fb207fe3080e1844630b | affected |
| Linux | Linux | 6.7 | affected |
| Linux | Linux | 0 < 6.7 | unaffected |
| Linux | Linux | 6.12.57 <= 6.12.* | unaffected |
| Linux | Linux | 6.13.3 <= 6.13.* | unaffected |
| Linux | Linux | 6.14 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/68ec78beb4a3fb0877cbaaf49758c85410c05977
- https://git.kernel.org/stable/c/df96876be3b064aefc493f760e0639765d13ed0d
- https://git.kernel.org/stable/c/60f030f7418d3f1d94f2fb207fe3080e1844630b
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.