CVE-2025-68811Out-of-bounds Write in Linux

CWE-787Out-of-bounds Write15 documents8 sources
Severity
6.4MEDIUM
No vector
EPSS
0.0%
top 93.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
13
LinuxLinux KernelDebian Linux+10 more
Timeline
PublishedJan 13
Latest updateApr 17

Description

In the Linux kernel, the following vulnerability has been resolved: svcrdma: use rc_pageoff for memcpy byte offset svc_rdma_copy_inline_range added rc_curpage (page index) to the page base instead of the byte offset rc_pageoff. Use rc_pageoff so copies land within the current page. Found by ZeroPath (https://zeropath.com)

Affected Packages14 packages

Linuxlinux/linux_kernel6.8.06.12.64+1
Debianlinux/linux_kernel< 6.12.69-1+1
CVEListV5linux/linux8e122582680c6f8acd686a5a2af9c0e46fe90f2de8623e9c451e23d84b870811f42fd872b4089ef6+3
debiandebian/linux< linux 6.18.3-1 (forky)

🔴Vulnerability Details

3
OSV
CVE-2025-68811: In the Linux kernel, the following vulnerability has been resolved: svcrdma: use rc_pageoff for memcpy byte offset svc_rdma_copy_inline_range added rc2026-01-13
OSV
svcrdma: use rc_pageoff for memcpy byte offset2026-01-13
GHSA
GHSA-2gq5-6pmr-v24v: In the Linux kernel, the following vulnerability has been resolved: svcrdma: use rc_pageoff for memcpy byte offset svc_rdma_copy_inline_range added2026-01-13

📋Vendor Advisories

9
Ubuntu
Linux kernel (GCP) vulnerabilities2026-04-17
Ubuntu
Linux kernel (FIPS) vulnerabilities2026-04-17
Ubuntu
Linux kernel (Real-time) vulnerabilities2026-04-17
Ubuntu
Linux kernel (Real-time) vulnerabilities2026-04-17
Ubuntu
Linux kernel (NVIDIA) vulnerabilities2026-04-17

🕵️Threat Intelligence

1
Wiz
CVE-2025-68811 Impact, Exploitability, and Mitigation Steps | Wiz

💬Community

1
Bugzilla
CVE-2025-68811 kernel: svcrdma: use rc_pageoff for memcpy byte offset2026-01-13