CVE-2025-68191

Linux Kernel - Denial of Service via Memory Allocation Failure in udp_tunnel_nic_register

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: udp_tunnel: use netdev_warn() instead of netdev_WARN() netdev_WARN() uses WARN/WARN_ON to print a backtrace along with file and line information. In this case, udp_tunnel_nic_register() returning an error is just a failed operation, not a kernel bug. udp_tunnel_nic_register() can fail due to a memory allocation failure (kzalloc() or udp_tunnel_nic_alloc()). This is a normal runtime error and not a kernel bug. Replace netdev_WARN() with netdev_warn() accordingly.

References (7)

Core 7

Core References

Patch

https://git.kernel.org/stable/c/087f1ed450dc6e7e49ffbbbe5b78be1218c6d5e0

Patch

https://git.kernel.org/stable/c/45e4e4a8772fa1c5f6f38e82b732b3a9d8137af4

Patch

https://git.kernel.org/stable/c/7758ec35ff3e9a31558eda4f0f9eb0ddfa78a8ba

Patch

https://git.kernel.org/stable/c/c018a87942bf1607aeebf8dba5a210ca9a09a0fd

Patch

https://git.kernel.org/stable/c/51b3033088f0420b19027e3d54cd989b6ebd987e

Patch

https://git.kernel.org/stable/c/3c3b148bf8384c8a787753cf20abde1c5731f97f

Patch

https://git.kernel.org/stable/c/dc2f650f7e6857bf384069c1a56b2937a1ee370d

Scores

EPSS 0.0006

EPSS Percentile 18.3%

Details

Status published

Products (22)

linux/Kernel 5.11.0 - 5.15.197linux

linux/Kernel 5.16.0 - 6.1.159linux

linux/Kernel 5.9.0 - 5.10.247linux

linux/Kernel 6.13.0 - 6.17.8linux

linux/Kernel 6.2.0 - 6.6.117linux

linux/Kernel 6.7.0 - 6.12.58linux

Linux/Linux < 5.9

Linux/Linux 5.10.247 - 5.10.*

Linux/Linux 5.15.197 - 5.15.*

Linux/Linux 5.9

... and 12 more

Published Dec 16, 2025

Tracked Since Feb 18, 2026