PT-2026-1248 · Linux+2 · Linux Kernel+2

Published

2025-11-04

Updated

2026-04-06

CVE-2025-68760

CVSS v2.0

2.7

Low

Vector

AV:A/AC:L/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the iommu/amd module related to boundary checks within the iommu mmio show function. Specifically, the iommu mmio write function validates user-provided offsets, assuming a 4-byte access size. However, iommu mmio show uses readq(), which performs an 8-byte read. This discrepancy can lead to a 4-byte out-of-bounds read if a user provides an offset equal to mmio phys end - 4, as the check passes despite the larger read size. The vulnerable check is: iommu->dbg mmio offset > iommu->mmio phys end - 4.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2026-01325

CVE-2025-68760

OPENSUSE-SU-2026:10039-1

OPENSUSE-SU-2026:10301-1

USN-8094-1

USN-8094-2

USN-8094-3

USN-8094-4

USN-8094-5

USN-8152-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

PT-2026-1248 · Linux+2 · Linux Kernel+2

CVE-2025-68760

Weakness Enumeration

Related Identifiers

Affected Products

References · 416