vulnerability
Ubuntu: (CVE-2022-48904): linux-intel-iotg-5.15 vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:N/I:N/A:C) | Aug 22, 2024 | Nov 19, 2024 | Sep 1, 2025 |
Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
Aug 22, 2024
Added
Nov 19, 2024
Modified
Sep 1, 2025
Description
In the Linux kernel, the following vulnerability has been resolved:
iommu/amd: Fix I/O page table memory leak
The current logic updates the I/O page table mode for the domain
before calling the logic to free memory used for the page table.
This results in IOMMU page table memory leak, and can be observed
when launching VM w/ pass-through devices.
Fix by freeing the memory used for page table before updating the mode.
Solution
ubuntu-upgrade-linux-intel-iotg-5-15
References
- CVE-2022-48904
- https://attackerkb.com/topics/CVE-2022-48904
- CWE-401
- URL-https://git.kernel.org/linus/6b0b2d9a6a308bcd9300c2d83000a82812c56cea
- URL-https://git.kernel.org/stable/c/378e2fe1eb58d5c2ed55c8fe5e11f9db5033cdd6
- URL-https://git.kernel.org/stable/c/6b0b2d9a6a308bcd9300c2d83000a82812c56cea
- URL-https://git.kernel.org/stable/c/c78627f757e37c2cf386b59c700c4e1574988597
- URL-https://www.cve.org/CVERecord?id=CVE-2022-48904
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.