CVE-2025-68744

high

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Free special fields when update [lru_,]percpu_hash maps As [lru_,]percpu_hash maps support BPF_KPTR_{REF,PERCPU}, missing calls to 'bpf_obj_free_fields()' in 'pcpu_copy_value()' could cause the memory referenced by BPF_KPTR_{REF,PERCPU} fields to be held until the map gets freed. Fix this by calling 'bpf_obj_free_fields()' after 'copy_map_value[,_long]()' in 'pcpu_copy_value()'.

References

https://git.kernel.org/stable/c/96a5cb7072cabbac5c66ac9318242c3bdceebb68

https://git.kernel.org/stable/c/6af6e49a76c9af7d42eb923703e7648cb2bf401a

https://git.kernel.org/stable/c/4a03d69cece145e4fb527464be29c3806aa3221e

https://git.kernel.org/stable/c/3bf1378747e251571e0de15e7e0a6bf2919044e7

Details

Source: Mitre, NVD

Published: 2025-12-24

Updated: 2025-12-24

Risk Information

CVSS v2

Base Score: 6.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Severity: High

EPSS

EPSS: 0.00018