CVE-2025-68725

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel where BPF test infrastructure could emit invalid GSO types to the stack. This issue stemmed from a fuzzer tool triggering a warning in netif skb features() due to malformed GSO properties, specifically a missing gso type after setting gso segs and gso size. The issue was addressed with checks added in commit 121d57af308d to validate gso type in GSO handlers, initially to mitigate malicious packets combining a protocol with a non-matching gso type. The vulnerability is triggered when a BPF program pushes a packet to the loopback device via bpf clone redirect(). The gso features check() function returns feature flags via netif skb features().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

AZL-78413

CVE-2025-68725

ECHO-A868-3374-F9C1

OESA-2026-1759

OESA-2026-1760

OESA-2026-1761

OPENSUSE-SU-2026:10039-1

OPENSUSE-SU-2026:10301-1

OPENSUSE-SU-2026:20287-1

SUSE-SU-2026:0447-1

SUSE-SU-2026:0472-1

SUSE-SU-2026:0587-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

USN-8162-1

USN-8177-1

USN-8177-2

USN-8180-1

USN-8180-2

USN-8180-3

USN-8180-4

USN-8180-5

USN-8180-6

USN-8183-1

USN-8183-2

USN-8186-1

USN-8187-1

USN-8188-1

USN-8243-1

USN-8245-1

USN-8257-1

USN-8275-1

USN-8278-1

USN-8289-1

USN-8296-1

USN-8297-1

Affected Products

Debian

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-68725

Related Identifiers

Affected Products

References · 2522