CVE-2025-71071
iommu/mediatek: fix use-after-free on probe deferral
In the Linux kernel, the following vulnerability has been resolved:
iommu/mediatek: fix use-after-free on probe deferral
The driver is dropping the references taken to the larb devices during
probe after successful lookup as well as on errors. This can
potentially lead to a use-after-free in case a larb device has not yet
been bound to its driver so that the iommu driver probe defers.
Fix this by keeping the references as expected while the iommu driver is
bound.
Produtos afetados
Linux · LinuxQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://git.kernel.org/stable/c/1ef70a0b104ae8011811f60bcfaa55ff49385171https://git.kernel.org/stable/c/5c04217d06a1161aaf36267e9d971ab6f847d5a7https://git.kernel.org/stable/c/896ec55da3b90bdb9fc04fedc17ad8c359b2eee5https://git.kernel.org/stable/c/de83d4617f9fe059623e97acf7e1e10d209625b5https://git.kernel.org/stable/c/f6c08d3aa441bbc1956e9d65f1cbb89113a5aa8a