CVE-2025-68795 — Time-of-check Time-of-use (TOCTOU) Race Condition in Linux

CWE-367 — Time-of-check Time-of-use (TOCTOU) Race Condition30 documents7 sources

Severity

7.8HIGHOSV

No vector

EPSS

0.1%

top 79.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux +11 more

Timeline

PublishedJan 13

Latest updateApr 17

Description

In the Linux kernel, the following vulnerability has been resolved: ethtool: Avoid overflowing userspace buffer on stats query The ethtool -S command operates across three ioctl calls: ETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and ETHTOOL_GSTATS for the values. If the number of stats changes between these calls (e.g., due to device reconfiguration), userspace's buffer allocation will be incorrect, potentially leading to buffer overflow. Drivers are generally expected t…

Affected Packages16 packages

▶Linuxlinux/linux_kernel2.6.12 — 5.10.248+5

▶Debianlinux/linux_kernel< 5.10.249-1+3

▶Ubuntulinux/linux_kernel< 5.15.0-173.183

▶CVEListV5linux/linux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 — 3df375a1e75483b7d973c3cc2e46aa374db8428b+7

▶debiandebian/linux< linux 6.1.162-1 (bookworm)

🔴Vulnerability Details

OSV

linux-raspi vulnerabilities↗2026-04-01

▶

OSV

linux-intel-iot-realtime vulnerabilities↗2026-03-23

▶

OSV

linux-nvidia-tegra-igx vulnerabilities↗2026-03-23

▶

OSV

linux-realtime vulnerabilities↗2026-03-17

▶

OSV

linux-aws-5.15, linux-gcp-5.15, linux-gke, linux-hwe-5.15, linux-intel-iotg-5.15, linux-lowlatency-hwe-5.15, linux-oracle-5.15 vulnerabilities↗2026-03-17

▶

📋Vendor Advisories

Ubuntu

Linux kernel (GCP) vulnerabilities↗2026-04-17

▶

Ubuntu

Linux kernel (FIPS) vulnerabilities↗2026-04-17

▶

Ubuntu

Linux kernel (Real-time) vulnerabilities↗2026-04-17

▶

Ubuntu

Linux kernel (Real-time) vulnerabilities↗2026-04-17

▶

Ubuntu

Linux kernel (NVIDIA) vulnerabilities↗2026-04-17

▶

🕵️Threat Intelligence

Wiz

CVE-2025-68795 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶