PT-2025-52898 · Rtl818X+6 · Rtl818X+6

Published

2025-11-21

·

Updated

2026-05-11

·

CVE-2025-68362

CVSS v2.0

6.0

Medium

VectorAV:L/AC:H/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A flaw exists in the Linux kernel’s wifi subsystem, specifically within the rtl818x and rtl8187 drivers. The rtl8187 rx cb() function calculates the receive descriptor header address by subtracting its size from the skb tail pointer without validating if the received packet is large enough to contain this header. Receiving a truncated packet can lead to a buffer underflow, resulting in reading memory before the start of the skb data area and potentially causing a kernel panic. The issue is addressed by adding length checks for both rtl8187 and rtl8187b descriptor headers before accessing them, and dropping the packet if the check fails.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Resource Release

Weakness Enumeration

CWE-404

Related Identifiers

AZL-73063
BDU:2026-02432
CVE-2025-68362
ECHO-C4D7-6793-6DD7
OESA-2026-1759
OESA-2026-1760
OESA-2026-1761
OPENSUSE-SU-2026:10039-1
OPENSUSE-SU-2026:10301-1
OPENSUSE-SU-2026:20145-1
SUSE-SU-2026:0278-1
SUSE-SU-2026:0281-1
SUSE-SU-2026:0293-1
SUSE-SU-2026:0315-1
SUSE-SU-2026:0473-1
SUSE-SU-2026:20207-1
SUSE-SU-2026:20220-1
SUSE-SU-2026:20228-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-8094-1
USN-8094-2
USN-8094-3
USN-8094-4
USN-8094-5
USN-8096-1
USN-8096-2
USN-8096-3
USN-8096-4
USN-8096-5
USN-8116-1
USN-8141-1
USN-8152-1
USN-8163-1
USN-8163-2
USN-8179-1
USN-8179-2
USN-8179-3
USN-8179-4
USN-8184-1
USN-8185-1
USN-8185-2
USN-8203-1
USN-8204-1
USN-8243-1
USN-8258-1
USN-8260-1
USN-8261-1
USN-8265-1

Affected Products

Debian
Linuxmint
Linux Kernel
Ubuntu
Rtl8187
Rtl8187B
Rtl818X