CVE-2025-68235
BaseFortify
Publication date: 2025-12-16
Last updated on: 2025-12-18
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a memory leak in the Linux kernel's nouveau driver firmware. Specifically, the nvkm_falcon_fw::boot data is allocated but never freed, causing a kmemleak warning. The issue is that the allocated memory is not properly deallocated, which can lead to inefficient memory usage.
How can this vulnerability impact me? :
The impact of this vulnerability is primarily related to memory management. Since the allocated memory is not freed, it can cause a memory leak, potentially leading to increased memory usage over time. This may degrade system performance or stability if the leak accumulates significantly.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability causes a kmemleak warning due to a missing kfree() call for nvkm_falcon_fw::boot. You can detect it by checking for kmemleak warnings in the kernel logs. For example, use the command 'dmesg | grep kmemleak' to look for related warnings.
What immediate steps should I take to mitigate this vulnerability?
The vulnerability has been resolved by adding the missing kfree() call to properly deallocate nvkm_falcon_fw::boot. To mitigate this vulnerability, update your Linux kernel to the version that includes this fix.