CVE-2025-68775Improper Update of Reference Count in Linux

CWE-911Improper Update of Reference Count14 documents7 sources
Severity
6.4MEDIUM
No vector
EPSS
0.0%
top 92.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
13
LinuxLinux KernelDebian Linux+10 more
Timeline
PublishedJan 13
Latest updateApr 17

Description

In the Linux kernel, the following vulnerability has been resolved: net/handshake: duplicate handshake cancellations leak socket When a handshake request is cancelled it is removed from the handshake_net->hn_requests list, but it is still present in the handshake_rhashtbl until it is destroyed. If a second cancellation request arrives for the same handshake request, then remove_pending() will return false... and assuming HANDSHAKE_F_REQ_COMPLETED isn't set in req->hr_flags, we'll continue pro

Affected Packages14 packages

Linuxlinux/linux_kernel6.4.06.6.120+2
Debianlinux/linux_kernel< 6.12.69-1+1
CVEListV5linux/linux3b3009ea8abb713b022d94fba95ec270cf6e7eae011ae80c49d9bfa5b4336f8bd387cd25c7593663+4
debiandebian/linux< linux 6.18.3-1 (forky)

🔴Vulnerability Details

3
GHSA
GHSA-jpgq-r68h-x9q2: In the Linux kernel, the following vulnerability has been resolved: net/handshake: duplicate handshake cancellations leak socket When a handshake re2026-01-13
OSV
net/handshake: duplicate handshake cancellations leak socket2026-01-13
OSV
CVE-2025-68775: In the Linux kernel, the following vulnerability has been resolved: net/handshake: duplicate handshake cancellations leak socket When a handshake requ2026-01-13

📋Vendor Advisories

9
Ubuntu
Linux kernel (GCP) vulnerabilities2026-04-17
Ubuntu
Linux kernel (FIPS) vulnerabilities2026-04-17
Ubuntu
Linux kernel (Real-time) vulnerabilities2026-04-17
Ubuntu
Linux kernel (Real-time) vulnerabilities2026-04-17
Ubuntu
Linux kernel (NVIDIA) vulnerabilities2026-04-17

🕵️Threat Intelligence

1
Wiz
CVE-2025-68775 Impact, Exploitability, and Mitigation Steps | Wiz