CVE-2025-38594

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The Linux kernel contains a use-after-free (UAF) flaw within the iommu/vt-d subsystem, specifically during the unbinding of SVA (Second Virtual Address) with pending IOPFs (I/O Page Faults). A commit (17fce9d2336d) intended to disable IOPF on device detachment incorrectly did so while pending IOPFs were still present, potentially leading to a UAF error and kernel panic. The intel pasid tear down entry() function is responsible for blocking hardware from generating new page faults and flushing in-flight ones.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.