CVE-2025-68743
Memory Region Overlap Vulnerability in Linux Kernel mshv Component
Publication date: 2025-12-24
Last updated on: 2025-12-24
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel's mshv component involves an incorrect check for overlapping memory regions. The existing check only verifies if the start or end of a new memory region falls within an existing region, but it fails to detect cases where a new region starts before and ends after an existing region, causing an overlap. The fix changes the logic to properly check for any range intersection between memory regions.
How can this vulnerability impact me? :
This vulnerability could allow userspace to create overlapping memory regions in the mshv component, potentially leading to memory corruption or unexpected behavior in the kernel. This could affect system stability or security by allowing improper memory access or manipulation.