Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Increase ARCH_DMA_MINALIGN up to 16 ARCH_DMA_MINALIGN is 1 by default, but some LoongArch-specific devices (such as APBDMA) require 16 bytes alignment. When the data buffer length is too small, the hardware may make an error writing cacheline. Thus, it is dangerous to allocate a small memory buffer for DMA. It's always safe to define ARCH_DMA_MINALIGN as L1_CACHE_BYTES but unnecessary (kmalloc() need small memory objects). Therefore, just increase it to 16.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.19, < 6.1.134 |
References
- https://git.kernel.org/stable/c/1d0def2d1658666ec1f32c9495df60e7411e3c82Patch
- https://git.kernel.org/stable/c/279ec25c2df49fba1cd9488f2ddd045d9cb2112ePatch
- https://git.kernel.org/stable/c/4103cfe9dcb88010ae4911d3ff417457d1b6a720Patch
- https://git.kernel.org/stable/c/8b82aea3666f8f2c78f86148d78aea99c46e0f82Patch
- https://git.kernel.org/stable/c/bfff341cac7c650e6ca8d10503725992f5564d0fPatch
- https://git.kernel.org/stable/c/f39af67f03b564b763b06e44cb960c10a382d54aPatch
- https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
FAQ
What is CVE-2025-22049?
CVE-2025-22049 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: LoongArch: Increase ARCH_DMA_MINALIGN up to 16 ARCH_DMA_MINALIGN is 1 by default, but some LoongArch-specific devices (such as APB...
How severe is CVE-2025-22049?
CVE-2025-22049 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-22049?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.