CVE-2025-68743 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix create memory region overlap check The current check is incorrect; it only checks if the beginning or end of a region is within an existing region. This doesn't account for userspace specifying a region that begins before and ends after an existing region. Change the logic to a range intersection check against gfns and uaddrs for each region. Remove mshv_partition_region_by_uaddr() as it is no longer used.

PUBLISHED Reserved 2025-12-24 | Published 2025-12-24 | Updated 2025-12-24 | Assigner Linux

Product status

Default status

unaffected

621191d709b14882270dfd8ea5d7d6cdfebe2c35 (git) before 2183924dd834e0703f87e17c17e689bcbf55d69d

affected

621191d709b14882270dfd8ea5d7d6cdfebe2c35 (git) before ab3e7a78d83a61d335458cfe2e4d17eba69ae73d

affected

621191d709b14882270dfd8ea5d7d6cdfebe2c35 (git) before ba9eb9b86d232854e983203dc2fb1ba18e316681

affected

Default status

affected

6.15

affected

Any version before 6.15

unaffected

6.17.13 (semver)

unaffected

6.18.2 (semver)

unaffected

6.19-rc1 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/2183924dd834e0703f87e17c17e689bcbf55d69d

git.kernel.org/...c/ab3e7a78d83a61d335458cfe2e4d17eba69ae73d

git.kernel.org/...c/ba9eb9b86d232854e983203dc2fb1ba18e316681

cve.org (CVE-2025-68743)

nvd.nist.gov (CVE-2025-68743)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu