CVE-2025-68253
BaseFortify
Publication date: 2025-12-16
Last updated on: 2025-12-18
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel involves the function add_stack_record_to_list() spinning (waiting in a loop) when it is called from contexts where spinning is not allowed (specifically from *_nolock() contexts). The issue was that the function would spin in add_stack_record when GFP flags do not permit it, which could lead to improper behavior or system instability. The fix prevents spinning in add_stack_record_to_list() when called from such contexts.
How can this vulnerability impact me? :
This vulnerability could cause system instability or performance issues because spinning in contexts where it is not allowed can lead to deadlocks or excessive CPU usage. This may affect the reliability of the Linux kernel's memory management subsystem.