CVE-2025-68761 — Linux vulnerability

7 documents6 sources

Severity

—N/A

No vector

EPSS

0.0%

top 92.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedJan 5

Description

In the Linux kernel, the following vulnerability has been resolved: hfs: fix potential use after free in hfs_correct_next_unused_CNID() This code calls hfs_bnode_put(node) which drops the refcount and then dreferences "node" on the next line. It's only safe to use "node" when we're holding a reference so flip these two lines around.

Affected Packages3 packages

▶Linuxlinux/linux_kernel6.18.0 — 6.18.2

▶CVEListV5linux/linuxa06ec283e125e334155fe13005c76c9f484ce759 — 40a1e0142096dd7dd6cb5373841222b528698588+2

▶debiandebian/linux

🔴Vulnerability Details

OSV

hfs: fix potential use after free in hfs_correct_next_unused_CNID()↗2026-01-05

▶

GHSA

GHSA-7r8q-9953-q2xj: In the Linux kernel, the following vulnerability has been resolved: hfs: fix potential use after free in hfs_correct_next_unused_CNID() This code ca↗2026-01-05

▶

OSV

CVE-2025-68761: In the Linux kernel, the following vulnerability has been resolved: hfs: fix potential use after free in hfs_correct_next_unused_CNID() This code call↗2026-01-05

▶

📋Vendor Advisories

Red Hat

kernel: hfs: fix potential use after free in hfs_correct_next_unused_CNID()↗2026-01-05

▶

Debian

CVE-2025-68761: linux - In the Linux kernel, the following vulnerability has been resolved: hfs: fix po...↗2025

▶

🕵️Threat Intelligence

Wiz

CVE-2025-68761 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶