CVE-2025-68730

Linux Kernel 6.8-6.17.12, 6.18.0-6.18.1, 6.19 - Use-After-Free in IVPU BO Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix page fault in ivpu_bo_unbind_all_bos_from_context() Don't add BO to the vdev->bo_list in ivpu_gem_create_object(). When failure happens inside drm_gem_shmem_create(), the BO is not fully created and ivpu_gem_bo_free() callback will not be called causing a deleted BO to be left on the list.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/8172838a284c27190fa6782c2740a97020434750

Patch

https://git.kernel.org/stable/c/c9ef5ccd8bd9bcf598b6d3f77e7eb4dde7149aec

Patch

https://git.kernel.org/stable/c/8b694b405a84696f1d964f6da7cf9721e68c4714

Scores

EPSS 0.0002

EPSS Percentile 6.7%

Details

Status published

Products (10)

linux/Kernel 6.18.0 - 6.18.2linux

linux/Kernel 6.8.0 - 6.17.13linux

Linux/Linux < 6.8

Linux/Linux 6.17.13 - 6.17.*

Linux/Linux 6.18.2 - 6.18.*

Linux/Linux 6.19

Linux/Linux 6.8

Linux/Linux 8d88e4cdce4f5c56de55174a4d32ea9c06f7fa66 - 8172838a284c27190fa6782c2740a97020434750

Linux/Linux 8d88e4cdce4f5c56de55174a4d32ea9c06f7fa66 - 8b694b405a84696f1d964f6da7cf9721e68c4714

Linux/Linux 8d88e4cdce4f5c56de55174a4d32ea9c06f7fa66 - c9ef5ccd8bd9bcf598b6d3f77e7eb4dde7149aec

Published Dec 24, 2025

Tracked Since Feb 18, 2026