CVE-2025-68355

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak exists in the Linux kernel’s BPF (Berkeley Packet Filter) implementation related to exclusive maps. Specifically, when excl prog hash is zero and excl prog hash size is non-zero, the map is not properly freed, leading to a memory leak. This issue was identified through testing by syzbot. The vulnerability occurs during map creation within the map create function in kernel/bpf/syscall.c. The sys bpf function in the same file is also implicated.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.