CVE-2025-68351

MEDIUM EPSS 4.9%
Published Dec 24, 20256mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Dec 24, 2025 6mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: exfat: fix refcount leak in exfat_find Fix refcount leaks in `exfat_find` related to `exfat_get_dentry_set`. Function `exfat_get_dentry_set` would increase the reference counter of `es->bh` on success. Therefore, `exfat_put_dentry_set` must be called after `exfat_get_dentry_set` to ensure refcount consistency. This patch relocate two checks to avoid possible leaks.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥6.12.23  –  <6.12.68
linuxlinux_kernel*≥6.12.59  –  <6.13
linuxlinux_kernel*≥6.13.11  –  <6.14
linuxlinux_kernel*≥6.14.1  –  <6.18.2
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any

References 3

  • git.kernel.org https://git.kernel.org/stable/c/9aee8de970f18c2aaaa348e3de86c38e2d956c1d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d009ff8959d28d2a33aeb96a5f7e7161c421d78f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fc9ce762525e73438d31b613f18bca92a4d3d578
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/9aee8de970f18c2aaaa348e3de86c38e2d956c1d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d009ff8959d28d2a33aeb96a5f7e7161c421d78f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fc9ce762525e73438d31b613f18bca92a4d3d578
    Patch