CVE-2025-68353

CVSS v2.0

6.0

Medium

Vector

AV:L/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.7

Description The Linux kernel contains a flaw in the VXLAN implementation where a NULL pointer dereference can occur in the vxlan xmit one function. This happens because the sock4 and sock6 pointers are not guaranteed to be non-NULL, potentially leading to a kernel crash. The issue arises from lost validity checks in vxlan(6) get route after code changes in vxlan xmit one. The vulnerable function is vxlan xmit one.

Recommendations Update to version 6.7 or later.

Exploit

Fix

NULL Pointer Dereference

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476CWE-404

Related Identifiers

BDU:2026-02430

CVE-2025-68353

OPENSUSE-SU-2026:10039-1

OPENSUSE-SU-2026:10301-1

OPENSUSE-SU-2026:20145-1

SUSE-SU-2026:20207-1

SUSE-SU-2026:20220-1

SUSE-SU-2026:20228-1

USN-8177-1

USN-8177-2

USN-8183-1

USN-8183-2

USN-8245-1

USN-8257-1

Affected Products

Debian

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-68353

Weakness Enumeration

Related Identifiers

Affected Products

References · 795