CVE-2025-68199

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.18.0-rc1+

Description The Linux kernel contains a flaw related to the handling of CODETAG EMPTY in the mark objexts empty function for slab object extensions. Specifically, when a slab extension vector allocation fails and later succeeds, objects in the slab are marked as empty. Subsequently, if this slab is used for another slab, it can lead to a situation where the new slab's extensions point to a vector containing a non-NULL CODETAG EMPTY entry. When this slab is freed, the free slab obj exts function calls mark objexts empty, which expects a NULL entry, resulting in a warning. The issue was addressed by modifying mark objexts empty to skip the warning and setting the object extension value if it is already set to CODETAG EMPTY. The root cause is an improper handling of object extensions during slab allocation and deallocation.

Recommendations Update to a newer version of the Linux kernel that contains a fix for this vulnerability.