CVE-2025-68207

Linux Kernel < 6.12.59, 6.13-6.17.9, 6.18 - Use-After-Free in Dead CT Worker

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Synchronize Dead CT worker with unbind Cancel and wait for any Dead CT worker to complete before continuing with device unbinding. Else the worker will end up using resources freed by the undind operation. (cherry picked from commit 492671339114e376aaa38626d637a2751cdef263)

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/35959ab7d16b618616edf6df882a4533d2efe193

Patch

https://git.kernel.org/stable/c/ce6ccf8e881a919bf902174ac879f80c97669498

Patch

https://git.kernel.org/stable/c/95af8f4fdce8349a5fe75264007f1af2aa1082ea

Scores

EPSS 0.0002

EPSS Percentile 7.1%

Details

Status published

Products (11)

linux/Kernel < 6.12.59linux

linux/Kernel 6.13.0 - 6.17.9linux

Linux/Linux < 6.13

Linux/Linux 6.12.37 - 6.12.59

Linux/Linux 6.12.59 - 6.12.*

Linux/Linux 6.13

Linux/Linux 6.17.9 - 6.17.*

Linux/Linux 6.18

Linux/Linux d2c5a5a926f43b2e42c5c955f917bad8ad6dd68c - 95af8f4fdce8349a5fe75264007f1af2aa1082ea

Linux/Linux d2c5a5a926f43b2e42c5c955f917bad8ad6dd68c - ce6ccf8e881a919bf902174ac879f80c97669498

... and 1 more

Published Dec 16, 2025

Tracked Since Feb 18, 2026