CVE-2025-68762
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-05

Last updated on: 2026-01-08

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: net: netpoll: initialize work queue before error checks Prevent a kernel warning when netconsole setup fails on devices with IFF_DISABLE_NETPOLL flag. The warning (at kernel/workqueue.c:4242 in __flush_work) occurs because the cleanup path tries to cancel an uninitialized work queue. When __netpoll_setup() encounters a device with IFF_DISABLE_NETPOLL, it fails early and calls skb_pool_flush() for cleanup. This function calls cancel_work_sync(&np->refill_wq), but refill_wq hasn't been initialized yet, triggering the warning. Move INIT_WORK() to the beginning of __netpoll_setup(), ensuring the work queue is properly initialized before any potential failure points. This allows the cleanup path to safely cancel the work queue regardless of where the setup fails.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-05
Last Modified
2026-01-08
Generated
2026-06-16
AI Q&A
2026-01-05
EPSS Evaluated
2026-06-15
NVD
CVE-2025-68762
EUVD
EUVD-2026-0887
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability occurs in the Linux kernel's netpoll feature where the work queue is not initialized before error checks during netconsole setup. Specifically, if a device has the IFF_DISABLE_NETPOLL flag, the setup fails early and attempts to clean up by canceling a work queue that has not yet been initialized, causing a kernel warning. The fix involves initializing the work queue at the start of the setup process to prevent this warning and ensure safe cleanup.

Impact Analysis

This vulnerability can cause kernel warnings during netconsole setup failures on devices with the IFF_DISABLE_NETPOLL flag. While it does not describe direct exploitation or security breaches, such kernel warnings may lead to instability or unexpected behavior in the kernel's networking subsystem, potentially affecting system reliability.

Mitigation Strategies

To mitigate this vulnerability, update the Linux kernel to a version where the netpoll work queue initialization issue is fixed. This ensures that the work queue is properly initialized before any error checks, preventing kernel warnings and potential instability related to netconsole setup failures on devices with the IFF_DISABLE_NETPOLL flag.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-68762. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart