CVE-2025-68212
BaseFortify
Publication date: 2025-12-16
Last updated on: 2025-12-18
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is in the Linux kernel's statmount_string() function. It occurs because the 'offp' pointer, which is supposed to be initialized and updated with string offsets, remains uninitialized in certain cases (STATMOUNT_MNT_UIDMAP and STATMOUNT_MNT_GIDMAP). This can lead to an uninitialized pointer dereference when the code attempts to update *offp. The fix involved properly assigning 'offp' in these cases to maintain consistent code behavior.
How can this vulnerability impact me? :
The vulnerability can cause an uninitialized pointer dereference in the Linux kernel, which may lead to undefined behavior such as system crashes or kernel panics. This can affect system stability and reliability.
What immediate steps should I take to mitigate this vulnerability?
Apply the patch or update to the fixed version of the Linux kernel that resolves the uninitialized 'offp' issue in statmount_string(). This ensures the vulnerability is addressed by initializing 'offp' properly for UIDMAP and GIDMAP cases.