CVE-2025-68192
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-12-16

Last updated on: 2025-12-18

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup Raw IP packets have no MAC header, leaving skb->mac_header uninitialized. This can trigger kernel panics on ARM64 when xfrm or other subsystems access the offset due to strict alignment checks. Initialize the MAC header to prevent such crashes. This can trigger kernel panics on ARM when running IPsec over the qmimux0 interface. Example trace: Internal error: Oops: 000000009600004f [#1] SMP CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.34-gbe78e49cb433 #1 Hardware name: LS1028A RDB Board (DT) pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : xfrm_input+0xde8/0x1318 lr : xfrm_input+0x61c/0x1318 sp : ffff800080003b20 Call trace: xfrm_input+0xde8/0x1318 xfrm6_rcv+0x38/0x44 xfrm6_esp_rcv+0x48/0xa8 ip6_protocol_deliver_rcu+0x94/0x4b0 ip6_input_finish+0x44/0x70 ip6_input+0x44/0xc0 ipv6_rcv+0x6c/0x114 __netif_receive_skb_one_core+0x5c/0x8c __netif_receive_skb+0x18/0x60 process_backlog+0x78/0x17c __napi_poll+0x38/0x180 net_rx_action+0x168/0x2f0
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-16
Last Modified
2025-12-18
Generated
2026-05-07
AI Q&A
2025-12-16
EPSS Evaluated
2026-05-05
NVD
CVE-2025-68192
EUVD
EUVD-2025-203704
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel 6.12.34
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability occurs in the Linux kernel's usb qmi_wwan driver where raw IP packets lack a MAC header, leaving the mac_header field uninitialized. This uninitialized field can cause kernel panics on ARM64 and ARM architectures when subsystems like xfrm access it due to strict alignment checks. The issue is fixed by initializing the MAC header offset to prevent such crashes.


How can this vulnerability impact me? :

The vulnerability can cause kernel panics on ARM64 and ARM systems when running IPsec over the qmimux0 interface. This can lead to system crashes and instability, potentially disrupting network communications and services relying on the affected Linux kernel.


How can this vulnerability be detected on my network or system? Can you suggest some commands?

Detection can be done by monitoring for kernel panic logs related to the xfrm subsystem or IPsec over the qmimux0 interface, especially on ARM64 architectures. Look for kernel messages containing 'Oops' errors or call traces involving xfrm_input, ip6_input, or qmimux0. Commands such as 'dmesg | grep -i oops' or 'journalctl -k | grep -i qmimux0' may help identify these crashes.


What immediate steps should I take to mitigate this vulnerability?

Immediate mitigation involves updating the Linux kernel to a version where the MAC header offset initialization in qmimux_rx_fixup is applied, which prevents uninitialized MAC headers and kernel panics. If updating is not immediately possible, avoid using IPsec over the qmimux0 interface on affected ARM64 systems until a patch is applied.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart