CVE-2025-68193

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the drm/xe/guc subsystem. Specifically, a premature release of the CTB buffer object (BO) when a BO is allocated with the XE BO FLAG GGTT INVALIDATE flag can lead to system crashes. This occurs because the driver initiates TLB invalidation requests via the CTB mechanism during BO release. The issue is addressed by introducing a devm-managed release action during xe guc ct init() and xe guc ct init post hwconfig() to ensure proper CTB disablement before resource deallocation, preventing a use-after-free scenario. The function h2g write is involved in the crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.