CVE-2025-68770Unlock of a Resource that is not Locked in Linux

CWE-832Unlock of a Resource that is not Locked14 documents7 sources
Severity
6.4MEDIUM
No vector
EPSS
0.0%
top 93.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
13
LinuxLinux KernelDebian Linux+10 more
Timeline
PublishedJan 13
Latest updateApr 17

Description

In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix XDP_TX path For XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not correct. __bnxt_poll_work() -> bnxt_rx_pkt() -> bnxt_rx_xdp() may be looping within NAPI and some event flags may be set in earlier iterations. In particular, if BNXT_TX_EVENT is set earlier indicating some XDP_TX packets are ready and pending, it will be cleared if it is XDP_TX action again. Normally, we will set BNXT_TX_EVENT agai

Affected Packages14 packages

Linuxlinux/linux_kernel6.8.06.12.64+1
Debianlinux/linux_kernel< 6.12.69-1+1
CVEListV5linux/linux7f0a168b0441ef7fd6b46563efb2706c58ac2a4c4b83902a1e67ff327ab5c6c65021a03e72c081d6+3
debiandebian/linux< linux 6.18.3-1 (forky)

🔴Vulnerability Details

3
GHSA
GHSA-j6rg-wxjc-pxj8: In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix XDP_TX path For XDP_TX action in bnxt_rx_xdp(), clearing of the eve2026-01-13
OSV
CVE-2025-68770: In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix XDP_TX path For XDP_TX action in bnxt_rx_xdp(), clearing of the event2026-01-13
OSV
bnxt_en: Fix XDP_TX path2026-01-13

📋Vendor Advisories

9
Ubuntu
Linux kernel (GCP) vulnerabilities2026-04-17
Ubuntu
Linux kernel (FIPS) vulnerabilities2026-04-17
Ubuntu
Linux kernel (Real-time) vulnerabilities2026-04-17
Ubuntu
Linux kernel (Real-time) vulnerabilities2026-04-17
Ubuntu
Linux kernel (NVIDIA) vulnerabilities2026-04-17

🕵️Threat Intelligence

1
Wiz
CVE-2025-68770 Impact, Exploitability, and Mitigation Steps | Wiz