Use-After-Free Vulnerability in Linux Kernel's IOMMU Subsystem
CVE-2025-39966

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 15 October 2025

What is CVE-2025-39966?

A use-after-free vulnerability was identified in the IOMMU subsystem of the Linux kernel. When an allocation of an object fails before associating it with a file, the file's reference count can be decremented prematurely. This leads to an invalid pointer access when the work queue processes the file's release. The issue arises from improper management of file lifetimes during abort scenarios, potentially causing instability or exploitation risks. The core code has been updated to ensure proper synchronization, preventing the UAF in future operations.

Affected Version(s)

Linux 07838f7fd529c8a6de44b601d4b7057e6c8d36ed < 17195a7d754a5c6a31888702ca93f6f08f3383ad

Linux 07838f7fd529c8a6de44b601d4b7057e6c8d36ed

Linux 07838f7fd529c8a6de44b601d4b7057e6c8d36ed < 4e034bf045b12852a24d5d33f2451850818ba0c1

References

https://git.kernel.org/stable/c/17195a7d754a5c6a31888702c...

https://git.kernel.org/stable/c/e4825368285e33d6360c6c6a6...

https://git.kernel.org/stable/c/4e034bf045b12852a24d5d33f...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 15, 2025
Vulnerability Reserved
Apr 16, 2025

JSON