CVE-2025-68767

CVSS v2.0

5.5

Medium

Vector

AV:L/AC:H/Au:S/C:C/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains an issue where the S IFMT bits of inode->i mode can become invalid when the S IFMT bits of the "mode" field loaded from disk are corrupted. This occurs because the permissions field was treated as reserved in older macOS versions and should remain zero. When the "mode" field is not zero, the file must be a directory if dir is 1, or a regular file, symbolic link, character device, block device, FIFO, or socket if dir is 0.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

AZL-74315

BDU:2026-00742

CVE-2025-68767

ECHO-E4F3-1B9C-6A1C

MGASA-2026-0017

MGASA-2026-0018

SUSE-SU-2026:0473-1

USN-8096-1

USN-8096-2

USN-8096-3

USN-8096-4

USN-8096-5

USN-8116-1

USN-8141-1

USN-8163-1

USN-8163-2

USN-8177-1

USN-8177-2

USN-8179-1

USN-8179-2

USN-8179-3

USN-8179-4

USN-8183-1

USN-8183-2

USN-8184-1

USN-8185-1

USN-8185-2

USN-8203-1

USN-8204-1

USN-8243-1

USN-8245-1

USN-8257-1

USN-8258-1

USN-8260-1

USN-8261-1

USN-8265-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

Apple Macos

CVE-2025-68767

Weakness Enumeration

Related Identifiers

Affected Products

References · 1155