CVE-2025-21724

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-21724
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-21724.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-21724
Downstream
Related
Published
2025-02-27T02:15:16Z
Modified
2025-08-09T20:01:27Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

iommufd/iovabitmap: Fix shift-out-of-bounds in iovabitmapoffsetto_index()

Resolve a UBSAN shift-out-of-bounds issue in iovabitmapoffsettoindex() where shifting the constant "1" (of type int) by bitmap->mapped.pgshift (an unsigned long value) could result in undefined behavior.

The constant "1" defaults to a 32-bit "int", and when "pgshift" exceeds 31 (e.g., pgshift = 63) the shift operation overflows, as the result cannot be represented in a 32-bit type.

To resolve this, the constant is updated to "1UL", promoting it to an unsigned long type to match the operand's type.

References

Affected packages