CVE-2025-68294

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s io uring/net functionality. Specifically, the import process for vectored registered buffers incorrectly uses 'req' instead of the correct io kiocb, 'sr->notif', leading to potential lifetime management issues. This discrepancy occurs only with vectored imports, while non-vectored imports function correctly. The issue arises because the lifetimes of 'req' and 'sr->notif' may differ.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.