CVE-2025-21724

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-21724

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-21724.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-21724

Downstream

BELL-CVE-2025-21724

DEBIAN-CVE-2025-21724

DLA-4102-1

OESA-2025-1339

OESA-2025-1340

SUSE-SU-2025:01919-1

SUSE-SU-2025:0847-1

SUSE-SU-2025:0856-1

SUSE-SU-2025:0955-1

UBUNTU-CVE-2025-21724

USN-7521-1

USN-7521-3

USN-7651-1

USN-7651-2

USN-7651-3

USN-7651-4

USN-7651-5

USN-7651-6

USN-7652-1

USN-7653-1

USN-7737-1

Related

Published

2025-02-27T02:15:16Z

Modified

2025-08-09T20:01:27Z

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

iommufd/iovabitmap: Fix shift-out-of-bounds in iovabitmapoffsetto_index()

Resolve a UBSAN shift-out-of-bounds issue in iovabitmapoffsettoindex() where shifting the constant "1" (of type int) by bitmap->mapped.pgshift (an unsigned long value) could result in undefined behavior.

The constant "1" defaults to a 32-bit "int", and when "pgshift" exceeds 31 (e.g., pgshift = 63) the shift operation overflows, as the result cannot be represented in a 32-bit type.

To resolve this, the constant is updated to "1UL", promoting it to an unsigned long type to match the operand's type.

References

Affected packages