CVE-2026-45862
7.8
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
iommu/vt-d: Flush cache for PASID table before using it
When writing the address of a freshly allocated zero-initialized PASID table to a PASID directory entry, do that after the CPU cache flush for this PASID table, not before it, to avoid the time window when this PASID table may be already used by non-coherent IOMMU hardware while its contents in RAM is still some random old data, not zero-initialized.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 7e00b52c8cdd9d3a985d63d72ecae7bde6314883 < cd75e77125c8a51754ca4cd60b4ca083ed735d1d | affected |
| Linux | Linux | 5c65f097124770c3e5b9b83ed1a8b68c119bc7b5 < 0616137b70e6d9a547d4b60df8e1b64e36d83661 | affected |
| Linux | Linux | 2bed9455db7cc0ab7ece6b3d846472097b52855a < 36990407cdd257473607e33802d00e978af2759e | affected |
| Linux | Linux | 194b3348bdbb7db65375c72f3f774aee4cc6614e < c93f23375d8c410954b0df825e814b632fd62b9d | affected |
| Linux | Linux | 194b3348bdbb7db65375c72f3f774aee4cc6614e < 5962c30a6f05ea1ab73f039e235bb30716243517 | affected |
| Linux | Linux | 194b3348bdbb7db65375c72f3f774aee4cc6614e < 36244dfd3853f7bf89d03b8e90d56b23ce7fbc16 | affected |
| Linux | Linux | 194b3348bdbb7db65375c72f3f774aee4cc6614e < d15cda135148ea7ba929cfdbcf208182bc29a7aa | affected |
| Linux | Linux | 194b3348bdbb7db65375c72f3f774aee4cc6614e < 22d169bdd2849fe6bd18c2643742e1c02be6451c | affected |
| Linux | Linux | 1b48c70feefc499b62670521efa002ab01e05df5 | affected |
| Linux | Linux | bc348a6cc8f92e9979fbfbb3c6b48fd51b4b1dbf | affected |
| Linux | Linux | 5.10.175 < 5.10.252 | affected |
| Linux | Linux | 5.15.103 < 5.15.202 | affected |
| Linux | Linux | 6.1.16 < 6.1.165 | affected |
| Linux | Linux | 5.4.237 < 5.5 | affected |
| Linux | Linux | 6.2.3 < 6.3 | affected |
| Linux | Linux | 6.3 | affected |
| Linux | Linux | 0 < 6.3 | unaffected |
| Linux | Linux | 5.10.252 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.202 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.165 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.128 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.75 <= 6.12.* | unaffected |
| Linux | Linux | 6.18.14 <= 6.18.* | unaffected |
| Linux | Linux | 6.19.4 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/cd75e77125c8a51754ca4cd60b4ca083ed735d1d
- https://git.kernel.org/stable/c/0616137b70e6d9a547d4b60df8e1b64e36d83661
- https://git.kernel.org/stable/c/36990407cdd257473607e33802d00e978af2759e
- https://git.kernel.org/stable/c/c93f23375d8c410954b0df825e814b632fd62b9d
- https://git.kernel.org/stable/c/5962c30a6f05ea1ab73f039e235bb30716243517
- https://git.kernel.org/stable/c/36244dfd3853f7bf89d03b8e90d56b23ce7fbc16
- https://git.kernel.org/stable/c/d15cda135148ea7ba929cfdbcf208182bc29a7aa
- https://git.kernel.org/stable/c/22d169bdd2849fe6bd18c2643742e1c02be6451c
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.