#VU120148 Buffer overflow in Linux kernel - CVE-2025-68321
Published: December 16, 2025
Vulnerability identifier: #VU120148
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2025-68321
CWE-ID: CWE-119
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Linux kernel
Linux kernel
Software vendor:
Linux Foundation
Linux Foundation
Description
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the __page_pool_alloc_pages_slow() function in net/core/page_pool.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's repository.
External links
- https://git.kernel.org/stable/c/0ec2cd5c58793d0c622797cd5fbe26634b357210
- https://git.kernel.org/stable/c/3671a0775952026228ae44e096eb144bca75f8dc
- https://git.kernel.org/stable/c/7613c06ffa89c1e2266fb532e23ef7dfdf269d73
- https://git.kernel.org/stable/c/9835a0fd59a1df5ec0740fdab6d50db68e0f10de
- https://git.kernel.org/stable/c/ab48dc0e23eb714b3f233f8e8f6deed7df2051f5
- https://git.kernel.org/stable/c/f3b52167a0cb23b27414452fbc1278da2ee884fc