Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Linux Kernel: NVMe Driver May Crash with DMA Mapping Error
CVE-2026-23174
Summary
The Linux kernel's NVMe driver has a bug that can cause a crash when handling DMA (data transfer) mapping. This happens when the system's DMA requirements change while the driver is processing data. To fix this, the driver has been updated to properly handle these changes, preventing a potential crash. Updates are available to address this issue.
Original title
In the Linux kernel, the following vulnerability has been resolved:
nvme-pci: handle changing device dma map requirements
The initial state of dma_needs_unmap may be false, but change to true
whi...
Original description
In the Linux kernel, the following vulnerability has been resolved:
nvme-pci: handle changing device dma map requirements
The initial state of dma_needs_unmap may be false, but change to true
while mapping the data iterator. Enabling swiotlb is one such case that
can change the result. The nvme driver needs to save the mapped dma
vectors to be unmapped later, so allocate as needed during iteration
rather than assume it was always allocated at the beginning. This fixes
a NULL dereference from accessing an uninitialized dma_vecs when the
device dma unmapping requirements change mid-iteration.
nvme-pci: handle changing device dma map requirements
The initial state of dma_needs_unmap may be false, but change to true
while mapping the data iterator. Enabling swiotlb is one such case that
can change the result. The nvme driver needs to save the mapped dma
vectors to be unmapped later, so allocate as needed during iteration
rather than assume it was always allocated at the beginning. This fixes
a NULL dereference from accessing an uninitialized dma_vecs when the
device dma unmapping requirements change mid-iteration.
Published: 14 Feb 2026 · Updated: 10 Mar 2026 · First seen: 6 Mar 2026