CVE-2025-68210

Linux Kernel 6.10-6.12.58, 6.13-6.17.8, 6.18 - Denial of Service via Crafted Zstd-Compressed EROFS Image

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: erofs: avoid infinite loop due to incomplete zstd-compressed data Currently, the decompression logic incorrectly spins if compressed data is truncated in crafted (deliberately corrupted) images.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/4d0e0bb1908acac5b27d30b45c450e8ead97eb00

Patch

https://git.kernel.org/stable/c/1f86d73a0afe43b6a85d2aa8207853350b7e2111

Patch

https://git.kernel.org/stable/c/f2a12cc3b97f062186568a7b94ddb7aa2ef68140

Scores

EPSS 0.0003

EPSS Percentile 8.7%

Details

Status published

Products (10)

linux/Kernel 6.10.0 - 6.12.59linux

linux/Kernel 6.13.0 - 6.17.9linux

Linux/Linux < 6.10

Linux/Linux 6.10

Linux/Linux 6.12.59 - 6.12.*

Linux/Linux 6.17.9 - 6.17.*

Linux/Linux 6.18

Linux/Linux 7c35de4df1056a5a1fb4de042197b8f5b1033b61 - 1f86d73a0afe43b6a85d2aa8207853350b7e2111

Linux/Linux 7c35de4df1056a5a1fb4de042197b8f5b1033b61 - 4d0e0bb1908acac5b27d30b45c450e8ead97eb00

Linux/Linux 7c35de4df1056a5a1fb4de042197b8f5b1033b61 - f2a12cc3b97f062186568a7b94ddb7aa2ef68140

Published Dec 16, 2025

Tracked Since Feb 18, 2026