Volerion logoVolerion
Volerion logoVolerion

Linux Kernel IOMMU/AMD Concurrent TLB Invalidations Serialization Vulnerability

Vulnerability

A vulnerability in the Linux kernel's IOMMU AMD handling has been addressed. The issue arose from concurrent TLB invalidations, which caused completion waits to time out randomly. This was due to the command semaphore value being incremented outside of the IOMMU spinlock, allowing completion wait commands to be queued out of order. The vulnerability affected the Linux kernel stable tree.

Impact

The vulnerability could lead to improper sequencing of IOMMU commands, potentially causing timeouts in completion waits and disrupting the expected command processing order.

Reproduction

The vulnerability can be reproduced by initiating concurrent TLB invalidations in an environment where the Linux kernel IOMMU AMD handling is active. This will cause the command semaphore value to be incremented out of sequence, leading to timed-out completion waits.

Remediation

Users can update to the latest version of the Linux kernel stable tree, where this vulnerability has been fixed.

Added: May 6, 2026, 1:53 PM
Updated: May 6, 2026, 1:53 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
3.9
remediation
7.7
relevance
7.6
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.