Primary

Context

Linux Kernel IOMMU PASID State Reference Count Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's IOMMU AMD driver has been addressed. The issue involved a race condition when unbinding the Process Address Space Identifier (PASID) state, which could lead to a reference count decrement warning and potential memory leak. This vulnerability was present in several versions of the Linux kernel.

Impact

The vulnerability could cause a reference count to incorrectly decrement to zero, leading to a memory leak warning.

Reproduction

The vulnerability can be reproduced by binding a PASID state, then unbinding it while there are outstanding page faults. This sequence triggers a race condition that causes the reference count to improperly decrement, generating a warning about leaking memory.

Remediation

Users can apply the latest patch available in the Linux kernel stable tree to address this vulnerability.

Added: Oct 1, 2025, 1:56 PM

Updated: Oct 1, 2025, 1:56 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

3.9

remediation

7.7

relevance

0.6

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

3.9

remediation

7.7

relevance

0.6

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel IOMMU PASID State Reference Count Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating