CVE-2025-68805 — Linux vulnerability

10 documents7 sources

Severity

6.4MEDIUM

No vector

EPSS

0.0%

top 92.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux +3 more

Timeline

PublishedJan 13

Latest updateApr 17

Description

In the Linux kernel, the following vulnerability has been resolved: fuse: fix io-uring list corruption for terminated non-committed requests When a request is terminated before it has been committed, the request is not removed from the queue's list. This leaves a dangling list entry that leads to list corruption and use-after-free issues. Remove the request from the queue's list for terminated non-committed requests.

Affected Packages7 packages

▶Linuxlinux/linux_kernel6.14.0 — 6.18.3

▶Debianlinux/linux_kernel< 6.18.3-1

▶CVEListV5linux/linuxc090c8abae4b6b77a1bee116aa6c385456ebef96 — a6d1f1ace16d0e777a85f84267160052d3499b6e+2

▶debiandebian/linux< linux 6.18.3-1 (forky)

▶ubuntuubuntu/linux-gcp

🔴Vulnerability Details

OSV

CVE-2025-68805: In the Linux kernel, the following vulnerability has been resolved: fuse: fix io-uring list corruption for terminated non-committed requests When a re↗2026-01-13

▶

OSV

fuse: fix io-uring list corruption for terminated non-committed requests↗2026-01-13

▶

GHSA

GHSA-264m-hxmc-hwjf: In the Linux kernel, the following vulnerability has been resolved: fuse: fix io-uring list corruption for terminated non-committed requests When a↗2026-01-13

▶

📋Vendor Advisories

Ubuntu

Linux kernel (GCP) vulnerabilities↗2026-04-17

▶

Ubuntu

Linux kernel (Real-time) vulnerabilities↗2026-04-17

▶

Ubuntu

Linux kernel vulnerabilities↗2026-04-16

▶

Red Hat

kernel: fuse: fix io-uring list corruption for terminated non-committed requests↗2026-01-13

▶

Debian

CVE-2025-68805: linux - In the Linux kernel, the following vulnerability has been resolved: fuse: fix i...↗2025

▶

🕵️Threat Intelligence

Wiz

CVE-2025-68805 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶