Linux · Linux Kernel · CVE-2024-36925
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The issue is related to the swiotlb component of the Linux kernel. It occurs when using restricted DMA pools in conjunction with dynamic SWIOTLB, leading to a crash at boot-time due to a NULL pointer dereference. The crash happens because the `add mem pool()` function tries to add to a NULL `mem->pools` list. The problem can be fixed by initializing the `mem->pools` list head in `rmem swiotlb device init()` before calling `add mem pool()`.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.