CVE-2025-68167 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: gpiolib: fix invalid pointer access in debugfs If the memory allocation in gpiolib_seq_start() fails, the s->private field remains uninitialized and is later dereferenced without checking in gpiolib_seq_stop(). Initialize s->private to NULL before calling kzalloc() and check it before dereferencing it.

PUBLISHED Reserved 2025-12-16 | Published 2025-12-16 | Updated 2025-12-16 | Assigner Linux

Product status

Default status

unaffected

e348544f7994d252427ed3ae637c7081cbb90f66 (git) before 70180a6031056096c93ed2f47c41803268bdd91c

affected

e348544f7994d252427ed3ae637c7081cbb90f66 (git) before 3c91c8f424d3e44c8645ab765a38773e58afb07d

affected

e348544f7994d252427ed3ae637c7081cbb90f66 (git) before 2f6115ad8864cf3f48598f26c74c7c8e5c391919

affected

Default status

affected

6.9

affected

Any version before 6.9

unaffected

6.12.58 (semver)

unaffected

6.17.8 (semver)

unaffected

6.18 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/70180a6031056096c93ed2f47c41803268bdd91c

git.kernel.org/...c/3c91c8f424d3e44c8645ab765a38773e58afb07d

git.kernel.org/...c/2f6115ad8864cf3f48598f26c74c7c8e5c391919

cve.org (CVE-2025-68167)

nvd.nist.gov (CVE-2025-68167)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu