Memory Access Vulnerability in Linux Kernel Affecting PowerPC pSeries
CVE-2025-21713

Currently unrated

Key Information:

Vendor
Linux
Status
Linux
Vendor
CVE Published:
27 February 2025

Summary

A memory access vulnerability exists in the Linux kernel affecting PowerPC pSeries architecture, primarily due to improper handling of address window settings in the IOMMU subsystem. When multiple IOMMU groups attempt to use the same VFIO container, the kernel can fall into a NULL pointer dereference, ultimately leading to system crashes and potential denial-of-service. The flaw has been addressed through improved null checking mechanisms before unsetting windows.

Affected Version(s)

Linux f431a8cde7f102fce412546db6e62fdbde1131a7

Linux f431a8cde7f102fce412546db6e62fdbde1131a7

Linux f431a8cde7f102fce412546db6e62fdbde1131a7 < 17391cb2613b82f8c405570fea605af3255ff8d2

References

https://git.kernel.org/stable/c/b853ff0b514c1df314246fcf9...
https://git.kernel.org/stable/c/ac12372a13dab3f7a2762db24...
https://git.kernel.org/stable/c/17391cb2613b82f8c405570fe...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.