CVE-2025-21724
Description
In the Linux kernel, the following vulnerability has been resolved:iommufd/iova_bitmap: Fix shift-out-of-bounds in iova_bitmap_offset_to_index()Resolve a UBSAN shift-out-of-bounds issue in iova_bitmap_offset_to_index()where shifting the constant 1 (of type int) by bitmap->mapped.pgshift(an unsigned long value) could result in undefined behavior.The constant 1 defaults to a 32-bit int, and when pgshift exceeds31 (e.g., pgshift = 63) the shift operation overflows, as the resultcannot be represented in a 32-bit type.To resolve this, the constant is updated to 1UL, promoting it to anunsigned long type to match the operands type.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.035
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2025:0847-1(Public Cloud Module 15-SP6) kernel-syms-azure-6.4.0-150600.8.31.1.x86_64.rpm | Linux |
| SUSE-SU-2025:0847-1(Public Cloud Module 15-SP6) kernel-source-azure-6.4.0-150600.8.31.1.noarch.rpm | Linux |
| SUSE-SU-2025:0847-1(Public Cloud Module 15-SP6) kernel-devel-azure-6.4.0-150600.8.31.1.noarch.rpm | Linux |
| SUSE-SU-2025:0847-1(Public Cloud Module 15-SP6) kernel-azure-devel-debuginfo-6.4.0-150600.8.31.1.x86_64.rpm | Linux |
| SUSE-SU-2025:0847-1(Public Cloud Module 15-SP6) kernel-azure-devel-6.4.0-150600.8.31.1.x86_64.rpm | Linux |
| SUSE-SU-2025:0847-1(Public Cloud Module 15-SP6) kernel-azure-debugsource-6.4.0-150600.8.31.1.x86_64.rpm | Linux |
| SUSE-SU-2025:0847-1(Public Cloud Module 15-SP6) kernel-azure-debuginfo-6.4.0-150600.8.31.1.x86_64.rpm | Linux |
| SUSE-SU-2025:0847-1(Public Cloud Module 15-SP6) kernel-azure-6.4.0-150600.8.31.1.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Basesystem Module 15-SP6) kernel-devel-6.4.0-150600.23.42.1.noarch.rpm | Linux |
| SUSE-SU-2025:0856-1(Legacy Module 15-SP6) reiserfs-kmp-default-debuginfo-6.4.0-150600.23.42.2.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Legacy Module 15-SP6) reiserfs-kmp-default-6.4.0-150600.23.42.2.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Development Tools Module 15-SP6) kernel-syms-6.4.0-150600.23.42.1.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Development Tools Module 15-SP6) kernel-source-6.4.0-150600.23.42.1.noarch.rpm | Linux |
| SUSE-SU-2025:0856-1(Development Tools Module 15-SP6) kernel-obs-build-debugsource-6.4.0-150600.23.42.2.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Development Tools Module 15-SP6) kernel-obs-build-6.4.0-150600.23.42.2.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Basesystem Module 15-SP6) kernel-macros-6.4.0-150600.23.42.1.noarch.rpm | Linux |
| SUSE-SU-2025:0856-1(Development Tools Module 15-SP6) kernel-docs-6.4.0-150600.23.42.1.noarch.rpm | Linux |
| SUSE-SU-2025:0856-1(Basesystem Module 15-SP6) kernel-default-devel-debuginfo-6.4.0-150600.23.42.2.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Basesystem Module 15-SP6) kernel-default-devel-6.4.0-150600.23.42.2.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Basesystem Module 15-SP6) kernel-default-debugsource-6.4.0-150600.23.42.2.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Basesystem Module 15-SP6) kernel-default-debuginfo-6.4.0-150600.23.42.2.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Basesystem Module 15-SP6) kernel-default-base-6.4.0-150600.23.42.2.150600.12.18.4.x86_64.rpm | Linux |
| SUSE-SU-2025:0856-1(Basesystem Module 15-SP6) kernel-default-6.4.0-150600.23.42.2.x86_64.rpm | Linux |
| Linux kernel (USN-7521-1) linux-image-6.11.0-1010-realtime_6.11.0-1010.10_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-6.11.0-1015-azure_6.11.0-1015.15_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-6.11.0-1015-azure_6.11.0-1015.15~24.04.1_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-6.11.0-1015-azure-fde_6.11.0-1015.15_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-6.11.0-1015-azure-fde_6.11.0-1015.15~24.04.1_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-6.11.0-1015-gcp_6.11.0-1015.15_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-6.11.0-1015-gcp_6.11.0-1015.15~24.04.1_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-6.11.0-1022-oem_6.11.0-1022.22_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-6.11.0-26-generic_6.11.0-26.26_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-6.11.0-26-generic_6.11.0-26.26~24.04.1_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-azure_6.11.0-1015.15_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-azure_6.11.0-1015.15~24.04.1_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-azure-fde_6.11.0-1015.15_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-azure-fde_6.11.0-1015.15~24.04.1_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-gcp_6.11.0-1015.15_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-gcp_6.11.0-1015.15~24.04.1_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-generic_6.11.0-26.26_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-generic-hwe-24.04_6.11.0-26.26~24.04.1_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-oem-24.04b_6.11.0-1022.22_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-realtime_6.11.0-1010.10_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-virtual_6.11.0-26.26_amd64.deb | Linux |
| Linux kernel (USN-7521-1) linux-image-virtual-hwe-24.04_6.11.0-26.26~24.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-7521-2) linux-image-6.11.0-1014-aws_6.11.0-1014.15_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-7521-2) linux-image-aws_6.11.0-1014.15_amd64.deb | Linux |
| Linux low latency kernel (USN-7521-3) linux-image-6.11.0-1014-lowlatency_6.11.0-1014.15_amd64.deb | Linux |
| Linux low latency kernel (USN-7521-3) linux-image-6.11.0-1014-lowlatency_6.11.0-1014.15~24.04.1_amd64.deb | Linux |
| Linux low latency kernel (USN-7521-3) linux-image-6.11.0-1016-oracle_6.11.0-1016.17_amd64.deb | Linux |
| Linux low latency kernel (USN-7521-3) linux-image-lowlatency_6.11.0-1014.15_amd64.deb | Linux |
| Linux low latency kernel (USN-7521-3) linux-image-lowlatency-hwe-24.04_6.11.0-1014.15~24.04.1_amd64.deb | Linux |
| Linux low latency kernel (USN-7521-3) linux-image-oracle_6.11.0-1016.17_amd64.deb | Linux |
| kernel Security Update (ALAS2023-2025-876) kernel-livepatch-6.1.129-138.220-1.0-0.amzn2023.x86_64.rpm | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-6.8.0-1031-oem_6.8.0-1031.31_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-6.8.0-1032-aws_6.8.0-1032.34_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-6.8.0-64-generic_6.8.0-64.67_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-aws-6.8_6.8.0-1032.34_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-aws-lts-24.04_6.8.0-1032.34_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-generic_6.8.0-64.67_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-generic-6.8_6.8.0-64.67_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-kvm_6.8.0-64.67_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-oem-24.04_6.8.0-1031.31_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-oem-24.04a_6.8.0-1031.31_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-oem-6.8_6.8.0-1031.31_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-virtual_6.8.0-64.67_amd64.deb | Linux |
| Linux kernel (USN-7651-1) USN-7651-1 linux-image-virtual-6.8_6.8.0-64.67_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-7653-1) USN-7653-1 linux-image-6.8.0-64-generic_6.8.0-64.67~22.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-7653-1) USN-7653-1 linux-image-generic-6.8_6.8.0-64.67~22.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-7653-1) USN-7653-1 linux-image-generic-hwe-22.04_6.8.0-64.67~22.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-7653-1) USN-7653-1 linux-image-oem-22.04_6.8.0-64.67~22.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-7653-1) USN-7653-1 linux-image-oem-22.04a_6.8.0-64.67~22.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-7653-1) USN-7653-1 linux-image-oem-22.04b_6.8.0-64.67~22.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-7653-1) USN-7653-1 linux-image-oem-22.04c_6.8.0-64.67~22.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-7653-1) USN-7653-1 linux-image-oem-22.04d_6.8.0-64.67~22.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-7653-1) USN-7653-1 linux-image-virtual-6.8_6.8.0-64.67~22.04.1_amd64.deb | Linux |
| Linux hardware enablement (HWE) kernel (USN-7653-1) USN-7653-1 linux-image-virtual-hwe-22.04_6.8.0-64.67~22.04.1_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-6.8.0-1029-ibm_6.8.0-1029.29_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-6.8.0-1029-ibm_6.8.0-1029.29~22.04.1_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-6.8.0-64-lowlatency_6.8.0-64.67.1_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-6.8.0-64-lowlatency_6.8.0-64.67.1~22.04.1_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-ibm_6.8.0-1029.29_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-ibm-6.8_6.8.0-1029.29_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-ibm-6.8_6.8.0-1029.29~22.04.1_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-ibm-classic_6.8.0-1029.29_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-ibm-lts-24.04_6.8.0-1029.29_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-lowlatency_6.8.0-64.67.1_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-lowlatency-6.8_6.8.0-64.67.1_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-lowlatency-6.8_6.8.0-64.67.1~22.04.1_amd64.deb | Linux |
| Linux kernel for IBM cloud systems (USN-7651-2) USN-7651-2 linux-image-lowlatency-hwe-22.04_6.8.0-64.67.1~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-6.8.0-1015-gkeop_6.8.0-1015.17_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-6.8.0-1028-gke_6.8.0-1028.32_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-6.8.0-1029-oracle_6.8.0-1029.30_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-6.8.0-1029-oracle_6.8.0-1029.30~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-6.8.0-1031-nvidia_6.8.0-1031.34_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-6.8.0-1031-nvidia_6.8.0-1031.34~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-6.8.0-1031-nvidia-lowlatency_6.8.0-1031.34.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-6.8.0-1032-aws_6.8.0-1032.34~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-aws_6.8.0-1032.34~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-aws-6.8_6.8.0-1032.34~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-gke_6.8.0-1028.32_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-gke-6.8_6.8.0-1028.32_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-gkeop_6.8.0-1015.17_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-gkeop-6.8_6.8.0-1015.17_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-nvidia_6.8.0-1031.34_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-nvidia-6.8_6.8.0-1031.34_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-nvidia-6.8_6.8.0-1031.34~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-nvidia-hwe-22.04_6.8.0-1031.34~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-nvidia-lowlatency_6.8.0-1031.34.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-nvidia-lowlatency-6.8_6.8.0-1031.34.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-oracle_6.8.0-1029.30~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-oracle-6.8_6.8.0-1029.30_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-oracle-6.8_6.8.0-1029.30~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Container Engine (GKE) systems (USN-7651-3) USN-7651-3 linux-image-oracle-lts-24.04_6.8.0-1029.30_amd64.deb | Linux |
| Linux kernel for Google Cloud Platform (GCP) systems (USN-7651-4) USN-7651-4 linux-image-6.8.0-1033-gcp_6.8.0-1033.35_amd64.deb | Linux |
| Linux kernel for Google Cloud Platform (GCP) systems (USN-7651-4) USN-7651-4 linux-image-6.8.0-1033-gcp_6.8.0-1033.35~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Cloud Platform (GCP) systems (USN-7651-4) USN-7651-4 linux-image-gcp_6.8.0-1033.35~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Cloud Platform (GCP) systems (USN-7651-4) USN-7651-4 linux-image-gcp-6.8_6.8.0-1033.35_amd64.deb | Linux |
| Linux kernel for Google Cloud Platform (GCP) systems (USN-7651-4) USN-7651-4 linux-image-gcp-6.8_6.8.0-1033.35~22.04.1_amd64.deb | Linux |
| Linux kernel for Google Cloud Platform (GCP) systems (USN-7651-4) USN-7651-4 linux-image-gcp-lts-24.04_6.8.0-1033.35_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234