CVE-2025-68326

Linux Kernel 6.17-6.17.10 - Denial of Service via Missing stack_depot_init Call

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Fix stack_depot usage Add missing stack_depot_init() call when CONFIG_DRM_XE_DEBUG_GUC is enabled to fix the following call stack: [] BUG: kernel NULL pointer dereference, address: 0000000000000000 [] Workqueue: drm_sched_run_job_work [gpu_sched] [] RIP: 0010:stack_depot_save_flags+0x172/0x870 [] Call Trace: [] <TASK> [] fast_req_track+0x58/0xb0 [xe] (cherry picked from commit 64fdf496a6929a0a194387d2bb5efaf5da2b542f)

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/1966838d1c82149cbf4a652322d26a6e5aae9c4e

Patch

https://git.kernel.org/stable/c/0e234632e39bd21dd28ffc9ba3ae8eec4deb949c

Scores

EPSS 0.0002

EPSS Percentile 6.5%

Details

Status published

Products (7)

linux/Kernel 6.17.0 - 6.17.11linux

Linux/Linux < 6.17

Linux/Linux 16b7e65d299d56442879405ac85800877fa51355 - 0e234632e39bd21dd28ffc9ba3ae8eec4deb949c

Linux/Linux 16b7e65d299d56442879405ac85800877fa51355 - 1966838d1c82149cbf4a652322d26a6e5aae9c4e

Linux/Linux 6.17

Linux/Linux 6.17.11 - 6.17.*

Linux/Linux 6.18

Published Dec 22, 2025

Tracked Since Feb 18, 2026