CVE-2025-68255
BaseFortify
Publication date: 2025-12-16
Last updated on: 2025-12-18
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, update your Linux kernel to a version where the staging: rtl8723bs driver has been patched to fix the stack buffer overflow in OnAssocReq IE parsing. This update clamps the IE length to the buffer size before copying, preventing stack corruption caused by malformed association requests.
Can you explain this vulnerability to me?
This vulnerability is a stack buffer overflow in the Linux kernel's rtl8723bs driver during the parsing of the Supported Rates Information Element (IE) in an incoming Association Request frame. The length of the Supported Rates IE was used directly as the length parameter in a memcpy() call to copy data into a fixed-size 16-byte stack buffer. If a malicious station sends an IE length larger than 16 bytes, it causes a stack buffer overflow, potentially corrupting the kernel stack. The fix clamps the IE length to the buffer size and corrects bounds checking to prevent this overflow.
How can this vulnerability impact me? :
This vulnerability can lead to kernel stack corruption if exploited by a malicious station sending malformed association requests with oversized Supported Rates IE lengths. Such stack corruption could potentially be used to execute arbitrary code or cause a denial of service by crashing the kernel, impacting system stability and security.