CVE-2025-68343

NONE EPSS 5.2%
Published Dec 23, 20256mo ago · Modified Jun 17, 20262w ago
Find Similar
Published Dec 23, 2025 6mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header The driver expects to receive a struct gs_host_frame in gs_usb_receive_bulk_callback(). Use struct_group to describe the header of the struct gs_host_frame and check that we have at least received the header before accessing any members of it. To resubmit the URB, do not dereference the pointer chain "dev->parent->hf_size_rx" but use "parent->hf_size_rx" instead. Since "urb->context" contains "parent", it is always defined, while "dev" is not defined if the URB it too short.

Threat Intelligence

EPSS Exploit Probability
5.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 5

  • git.kernel.org https://git.kernel.org/stable/c/18cbce43363c9f84b90a92d57df341155eee0697
  • git.kernel.org https://git.kernel.org/stable/c/3433680b759646efcacc64fe36aa2e51ae34b8f0
  • git.kernel.org https://git.kernel.org/stable/c/616eee3e895b8ca0028163fcb1dce5e3e9dea322
  • git.kernel.org https://git.kernel.org/stable/c/6fe9f3279f7d2518439a7962c5870c6e9ecbadcf
  • git.kernel.org https://git.kernel.org/stable/c/f31693dc3a584c0ad3937e857b59dbc1a7ed2b87

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.