-
CVE-2025-68289
- EPSS 0.06%
- Veröffentlicht 16.12.2025 15:06:10
- Zuletzt bearbeitet 18.12.2025 15:08:06
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
In the Linux kernel, the following vulnerability has been resolved:
usb: gadget: f_eem: Fix memory leak in eem_unwrap
The existing code did not handle the failure case of usb_ep_queue in the
command path, potentially leading to memory leaks.
Improve error handling to free all allocated resources on usb_ep_queue
failure. This patch continues to use goto logic for error handling, as the
existing error handling is complex and not easily adaptable to auto-cleanup
helpers.
kmemleak results:
unreferenced object 0xffffff895a512300 (size 240):
backtrace:
slab_post_alloc_hook+0xbc/0x3a4
kmem_cache_alloc+0x1b4/0x358
skb_clone+0x90/0xd8
eem_unwrap+0x1cc/0x36c
unreferenced object 0xffffff8a157f4000 (size 256):
backtrace:
slab_post_alloc_hook+0xbc/0x3a4
__kmem_cache_alloc_node+0x1b4/0x2dc
kmalloc_trace+0x48/0x140
dwc3_gadget_ep_alloc_request+0x58/0x11c
usb_ep_alloc_request+0x40/0xe4
eem_unwrap+0x204/0x36c
unreferenced object 0xffffff8aadbaac00 (size 128):
backtrace:
slab_post_alloc_hook+0xbc/0x3a4
__kmem_cache_alloc_node+0x1b4/0x2dc
__kmalloc+0x64/0x1a8
eem_unwrap+0x218/0x36c
unreferenced object 0xffffff89ccef3500 (size 64):
backtrace:
slab_post_alloc_hook+0xbc/0x3a4
__kmem_cache_alloc_node+0x1b4/0x2dc
kmalloc_trace+0x48/0x140
eem_unwrap+0x238/0x36cVerknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
LoginDaten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version <
a9985a88b2fc29fbe1657fe8518908e261d6889c
Version
3b545788505b2e2883aff13bdddeacaf88942a4f
Status
affected
Version <
5a1628283cd9dccf1e44acfb74e77504f4dc7472
Version
4249d6fbc10fd997abdf8a1ea49c0389a0edf706
Status
affected
Version <
0ac07e476944a5e4c2b8b087dd167dec248c1bdf
Version
4249d6fbc10fd997abdf8a1ea49c0389a0edf706
Status
affected
Version <
41434488ca714ab15cb2a4d0378418d1be8052d2
Version
4249d6fbc10fd997abdf8a1ea49c0389a0edf706
Status
affected
Version <
e72c963177c708a167a7e17ed6c76320815157cf
Version
4249d6fbc10fd997abdf8a1ea49c0389a0edf706
Status
affected
Version <
0dea2e0069a7e9aa034696f8065945b7be6dd6b7
Version
4249d6fbc10fd997abdf8a1ea49c0389a0edf706
Status
affected
Version <
e4f5ce990818d37930cd9fb0be29eee0553c59d9
Version
4249d6fbc10fd997abdf8a1ea49c0389a0edf706
Status
affected
Version
d55a236f1bab102e353ea5abb7b7b6ff7e847294
Status
affected
Version
8e275d3d5915a8f7db3786e3f84534bb48245f4c
Status
affected
Version
3680a6ff9a9ccd3c664663da04bef2534397d591
Status
affected
Version
d654be97e1b679616e3337b871a9ec8f31a88841
Status
affected
Version
8bdef7f21cb6e53c0ce3e1cbcb05975aa0dd0fe9
Status
affected
Version
77d7f071883cf2921a7547f82e41f15f7f860e35
Status
affected
Version
a55093941e38113dd6f5f5d5d2705fec3018f332
Status
affected
HerstellerLinux
≫
Produkt
Linux
Default Statusaffected
Version
5.14
Status
affected
Version <
5.14
Version
0
Status
unaffected
Version <=
5.10.*
Version
5.10.247
Status
unaffected
Version <=
5.15.*
Version
5.15.197
Status
unaffected
Version <=
6.1.*
Version
6.1.159
Status
unaffected
Version <=
6.6.*
Version
6.6.119
Status
unaffected
Version <=
6.12.*
Version
6.12.61
Status
unaffected
Version <=
6.17.*
Version
6.17.11
Status
unaffected
Version <=
*
Version
6.18
Status
unaffected
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.06% | 0.191 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|