CVE-2025-68253 — Infinite Loop in Linux

CWE-835 — Infinite Loop16 documents7 sources

Severity

4.5MEDIUM

No vector

EPSS

0.0%

top 89.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 16

Latest updateFeb 24

Description

In the Linux kernel, the following vulnerability has been resolved: mm: don't spin in add_stack_record when gfp flags don't allow syzbot was able to find the following path: add_stack_record_to_list mm/page_owner.c:182 [inline] inc_stack_record_count mm/page_owner.c:214 [inline] __set_page_owner+0x2c3/0x4a0 mm/page_owner.c:333 set_page_owner include/linux/page_owner.h:32 [inline] post_alloc_hook+0x240/0x2a0 mm/page_alloc.c:1851 prep_new_page mm/page_alloc.c:1859 [inline] get_page_from_freelist…

Affected Packages5 packages

▶Linuxlinux/linux_kernel6.15.0 — 6.17.6

▶Debianlinux/linux_kernel< 6.17.6-1

▶Ubuntulinux/linux_kernel< 6.17.0-14.14

▶CVEListV5linux/linux97769a53f117e2f33864c587d85992ee35194ecf — 504174133453e3af73e626e328603d7eb5986f34+2

▶debiandebian/linux< linux 6.17.6-1 (forky)

🔴Vulnerability Details

OSV

linux-azure vulnerabilities↗2026-02-24

▶

OSV

linux-oem-6.17 vulnerabilities↗2026-02-17

▶

OSV

linux-aws, linux-oracle vulnerabilities↗2026-02-17

▶

OSV

linux-gcp vulnerabilities↗2026-02-12

▶

OSV

linux, linux-raspi, linux-realtime vulnerabilities↗2026-02-12

▶

📋Vendor Advisories

Ubuntu

Linux kernel (Azure) vulnerabilities↗2026-02-24

▶

Ubuntu

Linux kernel (OEM) vulnerabilities↗2026-02-17

▶

Ubuntu

Linux kernel (GCP) vulnerabilities↗2026-02-12

▶

Ubuntu

Linux kernel vulnerabilities↗2026-02-12

▶

Red Hat

kernel: mm: don't spin in add_stack_record when gfp flags don't allow↗2025-12-16

▶

🕵️Threat Intelligence

Wiz

CVE-2025-68253 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶