CVE-2025-37927: 
Linux Kernel vulnerability analysis and mitigation

CVE-2025-37927 is a buffer overflow vulnerability discovered in the Linux kernel's AMD IOMMU driver, specifically in the parseivrsacpihid function. The vulnerability was identified and reported by the Linux Verification Center (linuxtesting.org) using SVACE tool, and was disclosed on May 20, 2025 (NVD, Wiz Security).

The vulnerability stems from a string parsing logic error in the parseivrsacpihid function where the comparison of ACPIIDLEN against total string length fails to account for individual hid and uid buffer lengths. For example, when a hid string length is 4 and uid string length is 260, the total length equals ACPIIDLEN + 1, but the uid string overflows its 256-byte buffer. Similar overflow occurs with a hid string of length 13 and uid string of length 250. The vulnerability has been assigned a CVSS v3.x score of 5.5, indicating moderate severity (Red Hat Security).

The buffer overflow vulnerability could potentially lead to memory corruption in the Linux kernel's AMD IOMMU driver, specifically affecting systems using AMD hardware with IOMMU functionality (Wiz Security).

The vulnerability has been resolved in the Linux kernel by implementing proper length validation for both hid and uid strings separately to prevent buffer overflow. For the Debian stable distribution (bookworm), these problems have been fixed in version 6.1.140-1. Users are advised to upgrade their Linux packages to the patched version (Debian Security).