Acknowledged
Created: Sep 4, 2025
Updated: Sep 8, 2025
Found In Version: 10.24.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:EOL][EOL]iommufd: Prevent ALIGN() overflow[EOL][EOL]When allocating IOVA the candidate range gets aligned to the target[EOL]alignment. If the range is close to ULONG_MAX then the ALIGN() can[EOL]wrap resulting in a corrupted iova.[EOL][EOL]Open code the ALIGN() using get_add_overflow() to prevent this.[EOL]This simplifies the checks as we don't need to check for length earlier[EOL]either.[EOL][EOL]Consolidate the two copies of this code under a single helper.[EOL][EOL]This bug would allow userspace to create a mapping that overlaps with some[EOL]other mapping or a reserved range.
CREATE(Triage):(User=admin) [CVE-2025-38688 (https://nvd.nist.gov/vuln/detail/CVE-2025-38688)
