CVE-2025-68359

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw related to double freeing of a qgroup record after a failure to add a delayed reference head. Specifically, the issue arises from a double kfree() scenario within the add delayed ref head() function. This could occur if a record was incorrectly reported as existing, leading to a subsequent error and an attempt to free the same memory twice. The fix shifts the ownership of the 'qrecord' object, ensuring the caller is solely responsible for freeing the memory, except in cases where the record was inserted into tracing logic. The qrecord inserted ret boolean has been updated to ensure proper initialization and accurate tracking of record insertion status.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2025-68359

OPENSUSE-SU-2026:10039-1

OPENSUSE-SU-2026:10301-1

OPENSUSE-SU-2026:20287-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

USN-8094-1

USN-8094-2

USN-8094-3

USN-8094-4

USN-8094-5

USN-8152-1

Affected Products

Debian

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-68359

Related Identifiers

Affected Products

References · 835