CVE-2025-68316 — Linux vulnerability

14 documents7 sources

Severity

5.3MEDIUM

No vector

EPSS

0.0%

top 89.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 16

Latest updateFeb 24

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix invalid probe error return value After DME Link Startup, the error return value is set to the MIPI UniPro GenericErrorCode which can be 0 (SUCCESS) or 1 (FAILURE). Upon failure during driver probe, the error code 1 is propagated back to the driver probe function which must return a negative value to indicate an error, but 1 is not negative, so the probe is considered to be successful even though it failed.…

Affected Packages5 packages

▶Linuxlinux/linux_kernel6.13.0 — 6.17.8

▶Debianlinux/linux_kernel< 6.17.8-1

▶Ubuntulinux/linux_kernel< 6.17.0-14.14

▶CVEListV5linux/linux69f5eb78d4b0cc978fe83dd2bfea1b67547290bf — df96dbe1af7f6591c09f862f1226d3619b07e1b6+2

▶debiandebian/linux< linux 6.17.8-1 (forky)

🔴Vulnerability Details

OSV

linux-azure vulnerabilities↗2026-02-24

▶

OSV

linux-aws, linux-oracle vulnerabilities↗2026-02-17

▶

OSV

linux-gcp vulnerabilities↗2026-02-12

▶

OSV

linux, linux-raspi, linux-realtime vulnerabilities↗2026-02-12

▶

OSV

scsi: ufs: core: Fix invalid probe error return value↗2025-12-16

▶

📋Vendor Advisories

Ubuntu

Linux kernel (Azure) vulnerabilities↗2026-02-24

▶

Ubuntu

Linux kernel (GCP) vulnerabilities↗2026-02-12

▶

Ubuntu

Linux kernel vulnerabilities↗2026-02-12

▶

Red Hat

kernel: scsi: ufs: core: Fix invalid probe error return value↗2025-12-16

▶

Debian

CVE-2025-68316: linux - In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: ...↗2025

▶

🕵️Threat Intelligence

Wiz

CVE-2025-68316 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶