CVE-2025-22022

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the Linux kernel's handling of isochronous endpoints on NEC uPD720200 devices. It causes IOMMU faults after some Missed Service Errors, potentially leading to data being written to random buffers of pending TDs on other endpoints, devices, or even other HCs in the same IOMMU domain. The problem can be avoided by setting the chain bit of Link TRBs on isochronous rings.

Recommendations As a temporary workaround, consider applying the link chain quirk on NEC isoc endpoints to avoid the issue. To resolve the issue, set the chain bit of Link TRBs on isochronous rings. No further information is provided on how to fix the vulnerability for specific versions.

Exploit

Fix

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-120CWE-119

Related Identifiers

AZL-62762

AZL-68982

BDU:2026-02548

CVE-2025-22022

ECHO-6050-2B6E-9541

SUSE-SU-2025:03204-1

SUSE-SU-2025:03600-1

SUSE-SU-2025:03601-1

SUSE-SU-2025:03602-1

SUSE-SU-2025:03633-1

SUSE-SU-2025:03634-1

SUSE-SU-2025:20851-1

SUSE-SU-2025:20861-1

SUSE-SU-2025:20870-1

SUSE-SU-2025:20898-1

SUSE-SU-2025:3725-1

SUSE-SU-2025:3751-1

SUSE-SU-2025_03204-1

USN-7594-1

USN-7594-2

USN-7594-3

USN-7605-1

USN-7605-2

USN-7606-1

USN-7628-1

USN-8096-1

USN-8096-2

USN-8096-3

USN-8096-4

USN-8096-5

USN-8116-1

USN-8141-1

USN-8163-1

USN-8163-2

USN-8179-1

USN-8179-2

USN-8179-3

USN-8179-4

USN-8184-1

USN-8185-1

USN-8185-2

USN-8203-1

USN-8204-1

USN-8243-1

USN-8258-1

USN-8260-1

USN-8261-1

USN-8265-1

Affected Products

Astra Linux

Debian

Linuxmint

Linux Kernel

Nec Upd720200

Suse

Ubuntu

CVE-2025-22022

Weakness Enumeration

Related Identifiers

Affected Products

References · 2357