CVE-2025-71202

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel related to IOMMU and stale IOTLB entries within the kernel address space. The issue involves the need to invalidate IOTLB paging cache entries before freeing CPU kernel page table pages. This is addressed by introducing a new IOMMU interface to manage this flushing process, particularly within the x86 architecture when handling combined user and kernel page tables. The primary cause is linked to the vfree() function, which is frequently used and can be triggered by unprivileged users. While the primary problem is resolved, a rare case involving memory unplug of reserved memory at boot remains, but cannot be triggered by unprivileged users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.