Home

CVE-2025-37877

Description

In the Linux kernel, the following vulnerability has been resolved:iommu: Clear iommu-dma ops on cleanupIf iommu_device_register() encounters an error, it can end up tearingdown already-configured groups and default domains, however thiscurrently still leaves devices hooked up to iommu-dma (and evenhistorically the behaviour in this area was at best inconsistent acrossarchitectures/drivers...) Although in the case that an IOMMU is presentwhose driver has failed to probe, users cannot necessarily expect DMA towork anyway, its still arguable that we should do our best to putthings back as if the IOMMU driver was never there at all, and certainlythe potential for crashing in iommu-dma itself is undesirable. Make surewe clean up the dev->dma_iommu flag along with everything else.

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.042

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-7594-1) linux-image-6.14.0-1004-realtime_6.14.0-1004.4_amd64.debLinux
Linux kernel (USN-7594-1) linux-image-6.14.0-1008-gcp_6.14.0-1008.8_amd64.debLinux
Linux kernel (USN-7594-1) linux-image-6.14.0-22-generic_6.14.0-22.22_amd64.debLinux
Linux kernel (USN-7594-1) linux-image-gcp_6.14.0-1008.8_amd64.debLinux
Linux kernel (USN-7594-1) linux-image-generic_6.14.0-22.22_amd64.debLinux
Linux kernel (USN-7594-1) linux-image-realtime_6.14.0-1004.4_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-6.14.0-1007-azure_6.14.0-1007.7_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-6.14.0-1007-azure-fde_6.14.0-1007.7_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-azure_6.14.0-1007.7_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-azure-fde_6.14.0-1007.7_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-6.14.0-1007-aws_6.14.0-1007.7_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-6.14.0-1007-oracle_6.14.0-1007.7_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-aws_6.14.0-1007.7+1_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-oracle_6.14.0-1007.7_amd64.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234