Shift-Out-of-Bounds Vulnerability in Linux Kernel Affecting iommufd
CVE-2025-21724

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 February 2025

Summary

A vulnerability in the Linux kernel's iommufd component could lead to undefined behavior due to a shift-out-of-bounds issue in the iova_bitmap_offset_to_index() function. When the variable bitmap->mapped.pgshift is greater than 31, the shift operation can overflow, resulting in unpredictable behavior. This was addressed by promoting the constant '1' to '1UL' to align with the operand type and prevent such shifts from occurring. Maintaining awareness of this vulnerability is crucial for users of the affected Linux kernel versions.

Affected Version(s)

Linux 58ccf0190d19d9a8a41f8a02b9e06742b58df4a1 < 44d9c94b7a3f29a3e07c4753603a35e9b28842a3

Linux 58ccf0190d19d9a8a41f8a02b9e06742b58df4a1 < 38ac76fc06bc6826a3e4b12a98efbe98432380a9

Linux 58ccf0190d19d9a8a41f8a02b9e06742b58df4a1

References

https://git.kernel.org/stable/c/44d9c94b7a3f29a3e07c47536...

https://git.kernel.org/stable/c/38ac76fc06bc6826a3e4b12a9...

https://git.kernel.org/stable/c/d5d33f01b86af44b23eea61ee...

Timeline

Vulnerability published
Feb 27, 2025
Vulnerability Reserved
Dec 29, 2024