CVE-2025-68235

Linux Kernel - Memory Leak in Nouveau Firmware Falcon Boot Allocation

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot nvkm_falcon_fw::boot is allocated, but no one frees it. This causes a kmemleak warning. Make sure this data is deallocated.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/7d1977b4ae5c50e1aafc5c51500fc08bd7afd6a0

Patch

https://git.kernel.org/stable/c/6492add9a3a163d5e0390428d2636adc3e61b883

Patch

https://git.kernel.org/stable/c/2bba02a39bfb383bd1a95868d532c0917e38f9e7

Patch

https://git.kernel.org/stable/c/949f1fd2225baefbea2995afa807dba5cbdb6bd3

Scores

EPSS 0.0003

EPSS Percentile 8.3%

Details

Status published

Products (13)

linux/Kernel 6.13.0 - 6.17.10linux

linux/Kernel 6.2.0 - 6.6.118linux

linux/Kernel 6.7.0 - 6.12.60linux

Linux/Linux < 6.2

Linux/Linux 2541626cfb794e57ba0575a6920826f591f7ced0 - 2bba02a39bfb383bd1a95868d532c0917e38f9e7

Linux/Linux 2541626cfb794e57ba0575a6920826f591f7ced0 - 6492add9a3a163d5e0390428d2636adc3e61b883

Linux/Linux 2541626cfb794e57ba0575a6920826f591f7ced0 - 7d1977b4ae5c50e1aafc5c51500fc08bd7afd6a0

Linux/Linux 2541626cfb794e57ba0575a6920826f591f7ced0 - 949f1fd2225baefbea2995afa807dba5cbdb6bd3

Linux/Linux 6.12.60 - 6.12.*

Linux/Linux 6.17.10 - 6.17.*

... and 3 more

Published Dec 16, 2025

Tracked Since Feb 18, 2026