CVE-2025-68812

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's media subsystem, specifically within the iris driver. A missing sanity check in the iris vb2 stop streaming function can lead to a crash if the stream state is already in an error state. This occurs because the function attempts to send packets to the firmware even after the session has been closed and memory has been freed in iris kill session. The issue arises when stop streaming is called after inst->state is set to IRIS INST ERROR.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.