CVE-2025-68235
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-12-16

Last updated on: 2025-12-18

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot nvkm_falcon_fw::boot is allocated, but no one frees it. This causes a kmemleak warning. Make sure this data is deallocated.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-16
Last Modified
2025-12-18
Generated
2026-06-16
AI Q&A
2025-12-16
EPSS Evaluated
2026-06-14
NVD
CVE-2025-68235
EUVD
EUVD-2025-203661
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a memory leak in the Linux kernel's nouveau driver firmware. Specifically, the nvkm_falcon_fw::boot data is allocated but never freed, causing a kmemleak warning. The issue is that the allocated memory is not properly deallocated, which can lead to inefficient memory usage.

Impact Analysis

The impact of this vulnerability is primarily related to memory management. Since the allocated memory is not freed, it can cause a memory leak, potentially leading to increased memory usage over time. This may degrade system performance or stability if the leak accumulates significantly.

Detection Guidance

This vulnerability causes a kmemleak warning due to a missing kfree() call for nvkm_falcon_fw::boot. You can detect it by checking for kmemleak warnings in the kernel logs. For example, use the command 'dmesg | grep kmemleak' to look for related warnings.

Mitigation Strategies

The vulnerability has been resolved by adding the missing kfree() call to properly deallocate nvkm_falcon_fw::boot. To mitigate this vulnerability, update your Linux kernel to the version that includes this fix.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-68235. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart