CVE-2025-68791
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2026-01-13
Last updated on: 2026-01-14
Assigner: kernel.org
Description
Description
In the Linux kernel, the following vulnerability has been resolved:
fuse: missing copy_finish in fuse-over-io-uring argument copies
Fix a possible reference count leak of payload pages during
fuse argument copies.
[Joanne: simplified error cleanup]
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux_kernel | fuse | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel's fuse subsystem involves a missing copy_finish operation during fuse-over-io-uring argument copies. This omission can cause a reference count leak of payload pages when copying fuse arguments, potentially leading to resource management issues.
How can this vulnerability impact me? :
The vulnerability can lead to a reference count leak of payload pages, which may cause resource leaks in the system. Over time, this could degrade system performance or stability due to unreleased resources.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70