VYPR
← All advisories
Medium severity5.5NVD Advisory· Published Jul 12, 2024· Updated May 12, 2026

CVE-2024-40945

CVE-2024-40945

Description

In the Linux kernel, the following vulnerability has been resolved:

iommu: Return right value in iommu_sva_bind_device()

iommu_sva_bind_device() should return either a sva bond handle or an ERR_PTR value in error cases. Existing drivers (idxd and uacce) only check the return value with IS_ERR(). This could potentially lead to a kernel NULL pointer dereference issue if the function returns NULL instead of an error pointer.

In reality, this doesn't cause any problems because iommu_sva_bind_device() only returns NULL when the kernel is not configured with CONFIG_IOMMU_SVA. In this case, iommu_dev_enable_feature(dev, IOMMU_DEV_FEAT_SVA) will return an error, and the device drivers won't call iommu_sva_bind_device() at all.

Affected products

1
  • Linux/Linuxv5
    Range: 5.2

Patches

7
700f56475888
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
cf34f8f66982
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
2973b8e7d127
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
6325eab6c108
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
7388ae6f26c0
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
61a96da9649a
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
89e8a2366e3b
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

4

News mentions

0

No linked articles in our index yet.