CVE-2025-68759
BaseFortify
Publication date: 2026-01-05
Last updated on: 2026-01-19
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a potential memory leak in the Linux kernel's rtl818x wifi driver, specifically in the rtl8180_init_rx_ring() function. When memory allocations for skb packets and DMA fail during initialization, the previously allocated memory is not freed properly, leading to memory leaks. The fix involves ensuring that on allocation failure, the code jumps to an error handling label that frees all previously allocated memory to prevent leaks and avoids double freeing memory.
How can this vulnerability impact me? :
This vulnerability can lead to memory leaks in the Linux kernel's wifi driver, which may cause increased memory usage and potentially degrade system performance or stability over time. In severe cases, it could lead to system crashes or denial of service if memory resources are exhausted.
What immediate steps should I take to mitigate this vulnerability?
Apply the patch or update to the fixed version of the Linux kernel that includes the fix for rtl8180_init_rx_ring() memory leak. This involves ensuring your system is running a kernel version where the error handling in rtl8180_init_rx_ring() properly frees allocated memory on failure, preventing memory leaks.