PT-2025-52903 · Linux+3 · Linux Kernel+3

Published

2025-11-11

·

Updated

2026-05-11

·

CVE-2025-68367

CVSS v2.0

6.0

Medium

VectorAV:L/AC:H/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.0+ #3
Description The Linux kernel contains a race condition within the macintosh/mac hid subsystem, specifically in the mac hid toggle emumouse() function. This issue arises when multiple processes concurrently write to the mac-hid emulation sysctl. The race condition occurs because both processes read the initial value of old val before either has a chance to register the input handler, leading to a double addition to the list. The warning message observed during testing indicates a double list add with the same handler. The root cause is that the read of old val occurs outside the mutex lock region.
Recommendations Update to a version newer than 6.6.0+ #3.

Exploit

Fix

Race Condition

Weakness Enumeration

CWE-362

Related Identifiers

BDU:2026-02509
CVE-2025-68367
ECHO-4073-A1F9-4C3E
OESA-2026-1303
OESA-2026-1304
OESA-2026-1305
OPENSUSE-SU-2026:10039-1
OPENSUSE-SU-2026:10301-1
OPENSUSE-SU-2026:20287-1
SUSE-SU-2026:0447-1
SUSE-SU-2026:0472-1
SUSE-SU-2026:0473-1
SUSE-SU-2026:0587-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20555-1
SUSE-SU-2026:20599-1
SUSE-SU-2026:20615-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-8094-1
USN-8094-2
USN-8094-3
USN-8094-4
USN-8094-5
USN-8096-1
USN-8096-2
USN-8096-3
USN-8096-4
USN-8096-5
USN-8116-1
USN-8141-1
USN-8152-1
USN-8163-1
USN-8163-2
USN-8179-1
USN-8179-2
USN-8179-3
USN-8179-4
USN-8184-1
USN-8185-1
USN-8185-2
USN-8203-1
USN-8204-1
USN-8243-1
USN-8258-1
USN-8260-1
USN-8261-1
USN-8265-1

Affected Products

Debian
Linuxmint
Linux Kernel
Ubuntu