CVE-2025-68348

EPSS 0.03%
Veröffentlicht 24.12.2025 10:32:40
Zuletzt bearbeitet 29.12.2025 15:58:56
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

block: fix memory leak in __blkdev_issue_zero_pages

Move the fatal signal check before bio_alloc() to prevent a memory
leak when BLKDEV_ZERO_KILLABLE is set and a fatal signal is pending.

Previously, the bio was allocated before checking for a fatal signal.
If a signal was pending, the code would break out of the loop without
freeing or chaining the just-allocated bio, causing a memory leak.

This matches the pattern already used in __blkdev_issue_write_zeroes()
where the signal check precedes the allocation.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 453e4b0c84d0db1454ff0adf655d91179e6fca3a

Version bf86bcdb40123ee99669ee91b67e023669433a1a

Status affected

Version < 7957635c679e8a01147163a3a4a1f16e1210fa03

Version bf86bcdb40123ee99669ee91b67e023669433a1a

Status affected

Version < 7193407bc4457212fa38ec3aff9c640e63a8dbef

Version bf86bcdb40123ee99669ee91b67e023669433a1a

Status affected

Version < f7e3f852a42d7cd8f1af2c330d9d153e30c8adcf

Version bf86bcdb40123ee99669ee91b67e023669433a1a

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.11

Status affected

Version < 6.11

Version 0

Status unaffected

Version <= 6.12.*

Version 6.12.63

Status unaffected

Version <= 6.17.*

Version 6.17.13

Status unaffected

Version <= 6.18.*

Version 6.18.2

Status unaffected

Version <= *

Version 6.19-rc1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.064

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/453e4b0c84d0db1454ff0adf655d91179e6fca3a

https://git.kernel.org/stable/c/7957635c679e8a01147163a3a4a1f16e1210fa03

https://git.kernel.org/stable/c/7193407bc4457212fa38ec3aff9c640e63a8dbef

https://git.kernel.org/stable/c/f7e3f852a42d7cd8f1af2c330d9d153e30c8adcf

https://nvd.nist.gov/vuln/detail/CVE-2025-68348

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68348

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68348

EUVD