VDB

CISA-2025-21770

CISA-2025-21770 PUBLISHED CVSS 5.5 MEDIUM

Reported by Linux · Published February 27, 2025

In the Linux kernel, the following vulnerability has been resolved: iommu: Fix potential memory leak in iopf_queue_remove_device() The iopf_queue_remove_device() helper removes a device from the per-iommu iopf queue when PRI is disabled on the device. It responds to all outstanding iopf's with an IOMMU_PAGE_RESP_INVALID code and detaches the device from the queue. However, it fails to release the group structure that represents a group of iopf's awaiting for a response after responding to the hardware. This can cause a memory leak if iopf_queue_remove_device() is called with pending iopf's. Fix it by calling iopf_free_group() after the iopf group is responded.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
LinuxLinux19911232713573a2ebea84a25bd4d71d024ed86b, 19911232713573a2ebea84a25bd4d71d024ed86b, 19911232713573a2ebea84a25bd4d71d024ed86b
LinuxLinux6.9, 0, 6.12.16
linuxlinux_kernel6.9, 6.9, 6.9
LinuxLinux19911232713573a2ebea84a25bd4d71d024ed86b, 19911232713573a2ebea84a25bd4d71d024ed86b, 6.9

Timeline

  • Feb 27, 2025 CVE Published
  • Oct 1, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›