CVE-2025-68240

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains an issue within the nilfs2 filesystem related to the handling of timers during segment constructor destruction. Specifically, the sc timer might remain active after the associated sci structure is freed, leading to potential errors. This occurs because kthread stop does not reliably stop the sc task thread, resulting in the sc timer not being properly closed. The fix involves using timer shutdown sync() to ensure the timer is fully stopped before the sc task is set to NULL, under the protection of the sc state lock.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.