-

CVE-2025-68782

EPSS 0.07%
Veröffentlicht 13.01.2026 15:28:56
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

scsi: target: Reset t_task_cdb pointer in error case

In the Linux kernel, the following vulnerability has been resolved:

scsi: target: Reset t_task_cdb pointer in error case

If allocation of cmd->t_task_cdb fails, it remains NULL but is later
dereferenced in the 'err' path.

In case of error, reset NULL t_task_cdb value to point at the default
fixed-size buffer.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 10

CNA 2 VulnDex Vulnerability Enrichment 9

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 9e95fb805dc043cc8ed878a08d1583e4097a5f80

Version < 6cac97b12bdab04832e0416d049efcd0d48d303b

Status affected

Version 9e95fb805dc043cc8ed878a08d1583e4097a5f80

Version < 45fd86b444105c8bd07a763f58635c87e5dc7aea

Status affected

Version 9e95fb805dc043cc8ed878a08d1583e4097a5f80

Version < 8727663ded659aad55eef21e3864ebf5a4796a96

Status affected

Version 9e95fb805dc043cc8ed878a08d1583e4097a5f80

Version < 0260ad551b0815eb788d47f32899fbcd65d6f128

Status affected

Version 9e95fb805dc043cc8ed878a08d1583e4097a5f80

Version < 0d36db68fdb8a3325386fd9523b67735f944e1f3

Status affected

Version 9e95fb805dc043cc8ed878a08d1583e4097a5f80

Version < 8edbb9e371af186b4cf40819dab65fafe109df4d

Status affected

Version 9e95fb805dc043cc8ed878a08d1583e4097a5f80

Version < 5053eab38a4c4543522d0c320c639c56a8b59908

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.8

Status affected

Version 0

Version < 5.8

Status unaffected

Version <= 5.10.*

Version 5.10.248

Status unaffected

Version <= 5.15.*

Version 5.15.198

Status unaffected

Version <= 6.1.*

Version 6.1.160

Status unaffected

Version <= 6.6.*

Version 6.6.120

Status unaffected

Version <= 6.12.*

Version 6.12.64

Status unaffected

Version <= 6.18.*

Version 6.18.3

Status unaffected

Version <= *

Version 6.19

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.21

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/8727663ded659aad55eef21e3864ebf5a4796a96

https://git.kernel.org/stable/c/0260ad551b0815eb788d47f32899fbcd65d6f128

https://git.kernel.org/stable/c/0d36db68fdb8a3325386fd9523b67735f944e1f3

https://git.kernel.org/stable/c/8edbb9e371af186b4cf40819dab65fafe109df4d

https://git.kernel.org/stable/c/5053eab38a4c4543522d0c320c639c56a8b59908

https://git.kernel.org/stable/c/45fd86b444105c8bd07a763f58635c87e5dc7aea

https://git.kernel.org/stable/c/6cac97b12bdab04832e0416d049efcd0d48d303b

https://nvd.nist.gov/vuln/detail/CVE-2025-68782

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68782

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68782

EUVD