In the Linux kernel, the following vulnerability has been resolved:
iommufd: Fix missing update of domainsitree after splitting ioptarea
In ioptareasplit(), if the original ioptarea has filled a domain and is linked to domainsitree, pagesnodes have to be properly reinserted. Otherwise the domainsitree becomes corrupted and we will UAF.