CVE-2025-68737Linux vulnerability

7 documents6 sources
Severity
N/A
No vector
EPSS
0.0%
top 92.35%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: arm64/pageattr: Propagate return value from __change_memory_common The rodata=on security measure requires that any code path which does vmalloc -> set_memory_ro/set_memory_rox must protect the linear map alias too. Therefore, if such a call fails, we must abort set_memory_* and caller must take appropriate action; currently we are suppressing the error, and there is a real chance of such an error arising post commit a166563e7

Affected Packages3 packages

Linuxlinux/linux_kernel6.18.06.18.2
CVEListV5linux/linuxa166563e7ec375b38a0fd3a58f7b77e50a6bc6a83e2fc1e57a5361633a4bf4222640c6bfe41ff8ea+2
debiandebian/linux

🔴Vulnerability Details

3
OSV
arm64/pageattr: Propagate return value from __change_memory_common2025-12-24
OSV
CVE-2025-68737: In the Linux kernel, the following vulnerability has been resolved: arm64/pageattr: Propagate return value from __change_memory_common The rodata=on s2025-12-24
GHSA
GHSA-ww8h-qfvw-pj5m: In the Linux kernel, the following vulnerability has been resolved: arm64/pageattr: Propagate return value from __change_memory_common The rodata=on2025-12-24

📋Vendor Advisories

2
Red Hat
kernel: arm64/pageattr: Propagate return value from __change_memory_common2025-12-24
Debian
CVE-2025-68737: linux - In the Linux kernel, the following vulnerability has been resolved: arm64/pagea...2025

🕵️Threat Intelligence

1
Wiz
CVE-2025-68737 Impact, Exploitability, and Mitigation Steps | Wiz