-

CVE-2025-68753

EPSS 0.03%
Veröffentlicht 05.01.2026 09:32:27
Zuletzt bearbeitet 11.01.2026 17:15:58
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

ALSA: firewire-motu: add bounds check in put_user loop for DSP events

In the DSP event handling code, a put_user() loop copies event data.
When the user buffer size is not aligned to 4 bytes, it could overwrite
beyond the buffer boundary.

Fix by adding a bounds check before put_user().

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < ea2c921d9de6e32ca50cb817b9d57bb881be70de

Version 634ec0b2906efd46f6f57977e172aa3470aca432

Status affected

Version < 6d4f17782ce4facf3197e79707df411ee3d7b30a

Version 634ec0b2906efd46f6f57977e172aa3470aca432

Status affected

Version < 0d71b3c2ed742f1ccb3b0b7a61afb90c0251093f

Version 634ec0b2906efd46f6f57977e172aa3470aca432

Status affected

Version < df692cf2b601a54b34edfdb9e683d67483aa8ce1

Version 634ec0b2906efd46f6f57977e172aa3470aca432

Status affected

Version < 8f9e51cf2a2a43d0cd72d3dc0b5ccea3f639c187

Version 634ec0b2906efd46f6f57977e172aa3470aca432

Status affected

Version < 298e753880b6ea99ac30df34959a7a03b0878eed

Version 634ec0b2906efd46f6f57977e172aa3470aca432

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.16

Status affected

Version < 5.16

Version 0

Status unaffected

Version <= 6.1.*

Version 6.1.160

Status unaffected

Version <= 6.6.*

Version 6.6.120

Status unaffected

Version <= 6.12.*

Version 6.12.63

Status unaffected

Version <= 6.17.*

Version 6.17.13

Status unaffected

Version <= 6.18.*

Version 6.18.2

Status unaffected

Version <= *

Version 6.19-rc1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.088

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/0d71b3c2ed742f1ccb3b0b7a61afb90c0251093f

https://git.kernel.org/stable/c/df692cf2b601a54b34edfdb9e683d67483aa8ce1

https://git.kernel.org/stable/c/8f9e51cf2a2a43d0cd72d3dc0b5ccea3f639c187

https://git.kernel.org/stable/c/298e753880b6ea99ac30df34959a7a03b0878eed

https://git.kernel.org/stable/c/6d4f17782ce4facf3197e79707df411ee3d7b30a

https://git.kernel.org/stable/c/ea2c921d9de6e32ca50cb817b9d57bb881be70de

https://nvd.nist.gov/vuln/detail/CVE-2025-68753

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68753

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68753

EUVD