Unrated severityNVD Advisory· Published Jan 5, 2026· Updated Apr 15, 2026
CVE-2025-68760
CVE-2025-68760
Description
In the Linux kernel, the following vulnerability has been resolved:
iommu/amd: Fix potential out-of-bounds read in iommu_mmio_show
In iommu_mmio_write(), it validates the user-provided offset with the check: iommu->dbg_mmio_offset > iommu->mmio_phys_end - 4. This assumes a 4-byte access. However, the corresponding show handler, iommu_mmio_show(), uses readq() to perform an 8-byte (64-bit) read.
If a user provides an offset equal to mmio_phys_end - 4, the check passes, and will lead to a 4-byte out-of-bounds read.
Fix this by adjusting the boundary check to use sizeof(u64), which corresponds to the size of the readq() operation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords3 versionspkg:linux/kernelpkg:rpm/opensuse/kernel-source&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/kernel-source-longterm&distro=openSUSE%20Tumbleweed
>= 6.17.0, < 6.17.13+ 2 more
- (no CPE)range: >= 6.17.0, < 6.17.13
- (no CPE)range: < 6.18.5-1.1
- (no CPE)range: < 6.18.16-1.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.