CVE-2025-71089 — Missing Synchronization in Linux
Severity
7.8HIGHNVD
EPSS
0.0%
top 98.96%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJan 13
Latest updateApr 17
Description
In the Linux kernel, the following vulnerability has been resolved:
iommu: disable SVA when CONFIG_X86 is set
Patch series "Fix stale IOTLB entries for kernel address space", v7.
This proposes a fix for a security vulnerability related to IOMMU Shared
Virtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel
page table entries. When a kernel page table page is freed and
reallocated for another purpose, the IOMMU might still hold stale,
incorrect entries. This can be exploited to …
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9
Affected Packages15 packages
▶CVEListV5linux/linux26b25a2b98e45aeb40eedcedc586ad5034cbd984 — b34289505180a83607fcfdce14b5a290d0528476+6
Patches
🔴Vulnerability Details
2GHSA▶
GHSA-r6cc-j9rp-4f85: In the Linux kernel, the following vulnerability has been resolved:
iommu: disable SVA when CONFIG_X86 is set
Patch series "Fix stale IOTLB entries↗2026-01-13
OSV▶
CVE-2025-71089: In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIG_X86 is set Patch series "Fix stale IOTLB entries fo↗2026-01-13