CVE-2023-33250

Name of the Vulnerable Software and Affected Versions Linux kernel version 6.3

Description The issue is related to a use-after-free in the iopt unmap iova range() function in the drivers/iommu/iommufd/io pagetable.c module of the Linux kernel. This could allow an attacker to cause a denial of service by exploiting the use of previously freed memory.

Recommendations For Linux kernel version 6.3, consider disabling the iopt unmap iova range() function as a temporary workaround until a patch is available. Restrict access to the io pagetable.c module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.