CVE-2025-21833

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-21833

Severity

5.5

Medium

CVSS V3

Eliminate CVEs with Chainguard hardened images

Build, ship, and run secure software with minimal, hardened container images — rebuilt from source daily and guarded under our industry-leading remediation SLA.

Start for free

Summary

iommu/vt-d: Avoid use of NULL after WARN_ON_ONCE

Description

In the Linux kernel, the following vulnerability has been resolved:

iommu/vt-d: Avoid use of NULL after WARN_ON_ONCE

There is a WARN_ON_ONCE to catch an unlikely situation when domain_remove_dev_pasid can't find the pasid. In case it nevertheless happens we must avoid using a NULL pointer.

References

https://nvd.nist.gov/vuln/detail/CVE-2025-21833
https://github.com/advisories/GHSA-c8w4-q7v8-687p
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
https://git.kernel.org/stable/c/60f030f7418d3f1d94f2fb207fe3080e1844630b
https://git.kernel.org/stable/c/68ec78beb4a3fb0877cbaaf49758c85410c05977
https://git.kernel.org/stable/c/df96876be3b064aefc493f760e0639765d13ed0d
https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/21xxx/CVE-2025-21833.json

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

CVE-2025-21833

Severity

Summary

Description

References

Affected packages

The trusted source for open source

Product

Solutions

Customers

Resources

Company