CVE-2025-68818

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.133

Description The Linux kernel contained a flaw related to SCSI operations and the qla2xxx driver. A reverted commit introduced a condition where code within qla2x00 abort all cmds() could call a function without holding a necessary spinlock, leading to a potential null pointer dereference in target mode. Subsequent code added a spinlock, but the original issue remained due to redundant and buggy code. This could result in a kernel crash, as indicated by a 'BUG: kernel NULL pointer dereference' message.

Recommendations Update to version 6.1.133 or later.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

AZL-74408

CVE-2025-68818

ECHO-865B-D0E3-D22A

MGASA-2026-0017

MGASA-2026-0018

OESA-2026-1759

OESA-2026-1760

OESA-2026-1761

OPENSUSE-SU-2026:20416-1

SUSE-SU-2026:1078-1

SUSE-SU-2026:1557-1

SUSE-SU-2026:1563-1

SUSE-SU-2026:1574-1

SUSE-SU-2026:1606-1

SUSE-SU-2026:20838-1

SUSE-SU-2026:20931-1

SUSE-SU-2026:21284-1

USN-8096-1

USN-8096-2

USN-8096-3

USN-8096-4

USN-8096-5

USN-8116-1

USN-8141-1

USN-8163-1

USN-8163-2

USN-8177-1

USN-8177-2

USN-8179-1

USN-8179-2

USN-8179-3

USN-8179-4

USN-8183-1

USN-8183-2

USN-8184-1

USN-8185-1

USN-8185-2

USN-8203-1

USN-8204-1

USN-8243-1

USN-8245-1

USN-8257-1

USN-8258-1

USN-8260-1

USN-8261-1

USN-8265-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

Qla2Xxx Driver

CVE-2025-68818

Related Identifiers

Affected Products

References · 1461