CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-21770: iommu: Fix potential memory leak in iopf_queue_remove_device()

Description

In the Linux kernel, the following vulnerability has been resolved:

iommu: Fix potential memory leak in iopf_queue_remove_device()

The iopf_queue_remove_device() helper removes a device from the per-iommu
iopf queue when PRI is disabled on the device. It responds to all
outstanding iopf's with an IOMMU_PAGE_RESP_INVALID code and detaches the
device from the queue.

However, it fails to release the group structure that represents a group
of iopf's awaiting for a response after responding to the hardware. This
can cause a memory leak if iopf_queue_remove_device() is called with
pending iopf's.

Fix it by calling iopf_free_group() after the iopf group is responded.

Classification

CVE ID: CVE-2025-21770

Affected Products

Vendor: Linux, Linux

Product: Linux, Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.02% (probability of being exploited)

EPSS Percentile: 1.68% (scored less or equal to compared to others)

EPSS Date: 2025-03-27 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2025-21770
https://git.kernel.org/stable/c/db60d2d896a17decd58d143eef92cf22eb0a0176
https://git.kernel.org/stable/c/90d5429cd2921ca2714684ed525898d431bb9283
https://git.kernel.org/stable/c/9759ae2cee7cd42b95f1c48aa3749bd02b5ddb08

Timeline

2025-02-27 03:40:37 UTC
CVE

iommu: Fix potential memory leak in iopf_queue_remove_device()