Linux Kernel Identity Domain Memory Corruption Vulnerability in IOMMU S390

A memory corruption vulnerability has been identified in the Linux kernel's IOMMU S390 implementation, specifically when using the identity domain. The issue arises because the identity domain is not associated with a valid S390 domain, leading to a global-out-of-bounds error. This vulnerability was discovered using KASAN, which reported the memory access issue when a device was managed through the identity domain.

Impact

Exploitation of this vulnerability causes memory corruption, with the potential for leading to arbitrary code execution or other memory-related vulnerabilities.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched version are available on the official Linux kernel website.