CVE-2025-37877Incomplete Cleanup in Linux

CWE-459Incomplete Cleanup12 documents7 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 87.35%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
16
LinuxLinux KernelDebian Linux+13 more
Timeline
PublishedMay 9
Latest updateJul 8

Description

In the Linux kernel, the following vulnerability has been resolved: iommu: Clear iommu-dma ops on cleanup If iommu_device_register() encounters an error, it can end up tearing down already-configured groups and default domains, however this currently still leaves devices hooked up to iommu-dma (and even historically the behaviour in this area was at best inconsistent across architectures/drivers...) Although in the case that an IOMMU is present whose driver has failed to probe, users cannot ne

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages18 packages

NVDlinux/linux_kernel6.136.14.5+2
Debianlinux/linux_kernel< 6.12.27-1+1
Ubuntulinux/linux_kernel< 6.14.0-22.22

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

5
OSV
linux-aws, linux-oracle vulnerabilities2025-07-08
OSV
linux-azure vulnerabilities2025-06-26
OSV
linux, linux-gcp, linux-raspi, linux-realtime vulnerabilities2025-06-24
OSV
CVE-2025-37877: In the Linux kernel, the following vulnerability has been resolved: iommu: Clear iommu-dma ops on cleanup If iommu_device_register() encounters an err2025-05-09
GHSA
GHSA-3v3m-75mh-5x2r: In the Linux kernel, the following vulnerability has been resolved: iommu: Clear iommu-dma ops on cleanup If iommu_device_register() encounters an e2025-05-09

📋Vendor Advisories

6
Ubuntu
Linux kernel vulnerabilities2025-07-08
Ubuntu
Linux kernel (Azure) vulnerabilities2025-06-26
Ubuntu
Linux kernel vulnerabilities2025-06-24
Microsoft
iommu: Clear iommu-dma ops on cleanup2025-05-13
Red Hat
kernel: iommu: Clear iommu-dma ops on cleanup2025-05-09
CVE-2025-37877 — Incomplete Cleanup in Linux | cvebase