CVE-2025-68343

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the CAN subsystem, specifically in the gs usb receive bulk callback() function. The driver incorrectly assumes the presence of a gs host frame structure and attempts to access its members without verifying the received data length. This can lead to a dereference of a null pointer if the received data is too short, potentially causing a system crash or other undefined behavior. The issue arises from accessing the header of the gs host frame structure without checking if the received data is large enough to contain the header. The code was modified to check the actual length before accessing the header and to use parent->hf size rx instead of dev->parent->hf size rx when resubmitting the URB.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

AZL-72995

CVE-2025-68343

ECHO-3096-1F46-4FF4

MGASA-2026-0017

MGASA-2026-0018

OPENSUSE-SU-2026:20145-1

SUSE-SU-2026:20207-1

SUSE-SU-2026:20220-1

SUSE-SU-2026:20228-1

USN-8094-1

USN-8094-2

USN-8094-3

USN-8094-4

USN-8094-5

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8095-5

USN-8100-1

USN-8125-1

USN-8126-1

USN-8152-1

USN-8165-1

USN-8261-1

Affected Products

Debian

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-68343

Related Identifiers

Affected Products

References · 1959