CVE-2025-68735

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the drm/panthor subsystem of the Linux kernel, specifically within the GROUP CREATE ioctl function. The issue arises from accessing a pointer to a group after it has been stored in an Xarray. A malicious user could potentially exploit this by predicting a group handle and attempting to call the GROUP DESTROY ioctl concurrently with the GROUP CREATE ioctl. The fix involves adding a mark to the group pool Xarray entry immediately before returning from the GROUP CREATE ioctl function, which is then checked by all ioctls specifying the group handle. This prevents userspace from deleting a group that hasn't been properly marked.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2025-68735

OPENSUSE-SU-2026:10039-1

OPENSUSE-SU-2026:10301-1

OPENSUSE-SU-2026:20287-1

SUSE-SU-2026:0962-1

SUSE-SU-2026:1081-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

USN-8094-1

USN-8094-2

USN-8094-3

USN-8094-4

USN-8094-5

USN-8152-1

Affected Products

Debian

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-68735

Related Identifiers

Affected Products

References · 1160