CVE-2025-68284Out-of-bounds Write in Linux

CWE-787Out-of-bounds Write53 documents8 sources
Severity
7.8HIGHOSV
OSV7.2OSV3.2
No vector
EPSS
0.1%
top 78.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
LinuxLinux KernelDebian Linux+2 more
Timeline
PublishedDec 16
Latest updateApr 13

Description

In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() The len field originates from untrusted network packets. Boundary checks have been added to prevent potential out-of-bounds writes when decrypting the connection secret or processing service tickets. [ idryomov: changelog ]

Affected Packages7 packages

Linuxlinux/linux_kernel5.11.05.15.197+4
Debianlinux/linux_kernel< 6.1.159-1+2
Ubuntulinux/linux_kernel< 5.15.0-173.183+2
CVEListV5linux/linux285ea34fc876aa0a2c5e65d310c4a41269e2e5f2f22c55a20a2d9ffbbac57408d5d488cef8201e9d+6

🔴Vulnerability Details

24
OSV
linux-oem-6.17 vulnerabilities2026-04-06
OSV
linux-raspi vulnerabilities2026-04-01
OSV
linux-raspi, linux-raspi-realtime vulnerabilities2026-04-01
OSV
linux-raspi vulnerabilities2026-04-01
OSV
linux-azure, linux-azure-6.17 vulnerabilities2026-03-25

📋Vendor Advisories

27
Ubuntu
Linux kernel (Azure) vulnerabilities2026-04-13
Ubuntu
Linux kernel (Azure FIPS) vulnerabilities2026-04-09
Ubuntu
Linux kernel (Azure FIPS) vulnerabilities2026-04-09
Ubuntu
Linux kernel (OEM) vulnerabilities2026-04-06
Ubuntu
Linux kernel (Raspberry Pi) vulnerabilities2026-04-01

🕵️Threat Intelligence

1
Wiz
CVE-2025-68284 Impact, Exploitability, and Mitigation Steps | Wiz