CVE-2025-68772

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0

Description The Linux kernel contains a flaw within the f2fs file system related to handling compression contexts during writeback operations. A race condition can occur when a file is being fsynced, its attributes are modified, or an ioctl operation is performed, potentially leading to a divide error. Specifically, the issue arises when the inode is non-compressed and the cluster size is updated concurrently with the compression context, triggering a division by zero in the f2fs all cluster page ready function. The fix involves introducing an atomic variable within the f2fs inode info structure to track the number of threads calling f2fs write cache pages() and using a semaphore lock to protect updates to this variable, preventing the race condition.

Recommendations Update to Linux kernel version 6.17.0 or later.

Exploit

Fix

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

AZL-74387

BDU:2026-00749

CVE-2025-68772

ECHO-8C4E-D922-13F7

MGASA-2026-0017

MGASA-2026-0018

USN-8177-1

USN-8177-2

USN-8179-1

USN-8179-2

USN-8179-3

USN-8179-4

USN-8183-1

USN-8183-2

USN-8184-1

USN-8185-1

USN-8185-2

USN-8203-1

USN-8204-1

USN-8245-1

USN-8257-1

USN-8258-1

USN-8260-1

USN-8261-1

USN-8265-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-68772

Weakness Enumeration

Related Identifiers

Affected Products

References · 722