CVE-2025-68252

EPSS 0.02%
Veröffentlicht 16.12.2025 14:32:18
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup

In the Linux kernel, the following vulnerability has been resolved:

misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup

In fastrpc_map_lookup, dma_buf_get is called to obtain a reference to
the dma_buf for comparison purposes. However, this reference is never
released when the function returns, leading to a dma_buf memory leak.

Fix this by adding dma_buf_put before returning from the function,
ensuring that the temporarily acquired reference is properly released
regardless of whether a matching map is found.

Rule: add

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 8

CNA 2 VulnDex Vulnerability Enrichment 2

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version ec5cb80503bbfee67573699fe52fcf456fd57678

Version < c2fef5ebb73f3dabae6fbc571d181914ed32c483

Status affected

Version 6e0d6cc39f410a4d9ea774fbb254c68fe02ff4bb

Version < 9a297a68c3ba4a7ecb31ed52f61bd6634abb79d3

Status affected

Version 6e0928a8988e873da9946e17f8065ad77c720186

Version < e17b13387827adce7acb19ac0f07f9bcafe0ff4c

Status affected

Version 1986bba9597b3d97d3e80530dc457a1cd1994e22

Version < 214e81a63a9aa0be42382ef0365ba5ed32c513ab

Status affected

Version 9031626ade38b092b72638dfe0c6ffce8d8acd43

Version < fff111bf45cbeeb659324316d68554e35d350092

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 6.1.156

Version < 6.1.158

Status affected

Version 6.6.112

Version < 6.6.115

Status affected

Version 6.12.53

Version < 6.12.56

Status affected

Version 6.17.3

Version < 6.17.6

Status affected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.063

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/c2fef5ebb73f3dabae6fbc571d181914ed32c483

https://git.kernel.org/stable/c/9a297a68c3ba4a7ecb31ed52f61bd6634abb79d3

https://git.kernel.org/stable/c/e17b13387827adce7acb19ac0f07f9bcafe0ff4c

https://git.kernel.org/stable/c/214e81a63a9aa0be42382ef0365ba5ed32c513ab

https://git.kernel.org/stable/c/fff111bf45cbeeb659324316d68554e35d350092

https://nvd.nist.gov/vuln/detail/CVE-2025-68252

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68252

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68252

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-68252