CVE-2025-68306NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference19 documents7 sources
Severity
7.2HIGHOSV
No vector
EPSS
0.0%
top 90.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 16
Latest updateApr 6

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: mediatek: Fix kernel crash when releasing mtk iso interface When performing reset tests and encountering abnormal card drop issues that lead to a kernel crash, it is necessary to perform a null check before releasing resources to avoid attempting to release a null pointer. [ 29.158070] Hardware name: Google Quigon sku196612/196613 board (DT) [ 29.158076] Workqueue: hci0 hci_cmd_sync_work [bluetooth] [ 29.158

Affected Packages5 packages

Linuxlinux/linux_kernel6.11.06.12.61+1
Debianlinux/linux_kernel< 6.12.63-1+1
Ubuntulinux/linux_kernel< 6.17.0-19.19
CVEListV5linux/linuxceac1cb0259de682d78f5c784ef8e0b13022e9d9421e88a0d85782786b7a1764c75518b4845e07b3+3
debiandebian/linux< linux 6.17.11-1 (forky)

🔴Vulnerability Details

9
OSV
linux-oem-6.17 vulnerabilities2026-04-06
OSV
linux-raspi vulnerabilities2026-04-01
OSV
linux-azure, linux-azure-6.17 vulnerabilities2026-03-25
OSV
linux-realtime-6.17 vulnerabilities2026-03-23
OSV
linux-gcp-6.17, linux-realtime vulnerabilities2026-03-17

📋Vendor Advisories

8
Ubuntu
Linux kernel (OEM) vulnerabilities2026-04-06
Ubuntu
Linux kernel (Raspberry Pi) vulnerabilities2026-04-01
Ubuntu
Linux kernel (Azure) vulnerabilities2026-03-25
Ubuntu
Linux kernel (Real-time) vulnerabilities2026-03-23
Ubuntu
Linux kernel vulnerabilities2026-03-17

🕵️Threat Intelligence

1
Wiz
CVE-2025-68306 Impact, Exploitability, and Mitigation Steps | Wiz