CVE-2025-37837

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, specifically in the iommu/tegra241-cmdqv module. The issue caused two WARNINGs to be observed when the SMMU driver rolled back upon failure. The warnings were due to the dmam free coherent() function being called in the context of devm action release(), while the LVCMDQ queue memory was managed by devres. The problem was caused by mis-ordered devres callbacks in arm smmu impl probe(). The vulnerability was resolved by removing the unwind part in tegra241 cmdqv init structures() and returning a proper error code to ask the SMMU driver to call tegra241 cmdqv remove() via impl ops->device remove().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.