Unrated severityNVD Advisory· Published Sep 5, 2025· Updated Sep 29, 2025

iommu/riscv: prevent NULL deref in iova_to_phys

CVE-2025-39699

Description

In the Linux kernel, the following vulnerability has been resolved:

The riscv_iommu_pte_fetch() function returns either NULL for unmapped/never-mapped iova, or a valid leaf pte pointer that requires no further validation.

riscv_iommu_iova_to_phys() failed to handle NULL returns. Prevent null pointer dereference in riscv_iommu_iova_to_phys(), and remove the pte validation.

Affected products

Linux/Kernelllm-fuzzy
Linux/Linuxv5
Range: 6.13

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.org/stable/c/220c491490255b656672bb572b18460cd9155926mitre
git.kernel.org/stable/c/99d4d1a070870aa08163af8ce0522992b7f35d8cmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000