In the Linux kernel, the following vulnerability has been resolved:EOL][EOL]bnxt_en: Set DMA unmap len correctly for XDP_REDIRECT[EOL][EOL]When transmitting an XDP_REDIRECT packet, call dma_unmap_len_set()[EOL]with the proper length instead of 0. This bug triggers this warning[EOL]on a system with IOMMU enabled:[EOL][EOL]WARNING: CPU: 36 PID: 0 at drivers/iommu/dma-iommu.c:842 __iommu_dma_unmap+0x159/0x170[EOL]RIP: 0010:__iommu_dma_unmap+0x159/0x170[EOL]Code: a8 00 00 00 00 48 c7 45 b0 00 00 00 00 48 c7 45 c8 00 00 00 00 48 c7 45 a0 ff ff ff ff 4c 89 45[EOL]b8 4c 89 45 c0 e9 77 ff ff ff <0f> 0b e9 60 ff ff ff e8 8b bf 6a 00 66 66 2e 0f 1f 84 00 00 00 00[EOL]RSP: 0018:ff22d31181150c88 EFLAGS: 00010206[EOL]RAX: 0000000000002000 RBX: 00000000e13a0000 RCX: 0000000000000000[EOL]RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000[EOL]RBP: ff22d31181150cf0 R08: ff22d31181150ca8 R09: 0000000000000000[EOL]R10: 0000000000000000 R11: ff22d311d36c9d80 R12: 0000000000001000[EOL]R13: ff13544d10645010 R14: ff22d31181150c90 R15: ff13544d0b2bac00[EOL]FS: 0000000000000000(0000) GS:ff13550908a00000(0000) knlGS:0000000000000000[EOL]CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033[EOL]CR2: 00005be909dacff8 CR3: 0008000173408003 CR4: 0000000000f71ef0[EOL]PKRU: 55555554[EOL]Call Trace:[EOL]<IRQ>[EOL]? show_regs+0x6d/0x80[EOL]? __warn+0x89/0x160[EOL]? __iommu_dma_unmap+0x159/0x170[EOL]? report_bug+0x17e/0x1b0[EOL]? handle_bug+0x46/0x90[EOL]? exc_invalid_op+0x18/0x80[EOL]? asm_exc_invalid_op+0x1b/0x20[EOL]? __iommu_dma_unmap+0x159/0x170[EOL]? __iommu_dma_unmap+0xb3/0x170[EOL]iommu_dma_unmap_page+0x4f/0x100[EOL]dma_unmap_page_attrs+0x52/0x220[EOL]? srso_alias_return_thunk+0x5/0xfbef5[EOL]? xdp_return_frame+0x2e/0xd0[EOL]bnxt_tx_int_xdp+0xdf/0x440 [bnxt_en][EOL]__bnxt_poll_work_done+0x81/0x1e0 [bnxt_en][EOL]bnxt_poll+0xd3/0x1e0 [bnxt_en] CREATE(Triage):(User=admin) [CVE-2025-38439 (https://nvd.nist.gov/vuln/detail/CVE-2025-38439)
