CVE-2025-68167

Published: Dec 16, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: gpiolib: fix invalid pointer access in debugfs If the memory allocation in gpiolib_seq_start() fails, the s->private field remains uninitialized and is later dereferenced without checking in gpiolib_seq_stop(). Initialize s->private to NULL before calling kzalloc() and check it before dereferencing it.

Vendor	Product	Versions
Linux	Linux	affected `e348544f7994d252427ed3ae637c7081cbb90f66 - < 70180a6031056096c93ed2f47c41803268bdd91c` affected `e348544f7994d252427ed3ae637c7081cbb90f66 - < 3c91c8f424d3e44c8645ab765a38773e58afb07d` affected `e348544f7994d252427ed3ae637c7081cbb90f66 - < 2f6115ad8864cf3f48598f26c74c7c8e5c391919`
Linux	Linux	affected `6.9` unaffected `0 - < 6.9` unaffected `6.12.58 - <= 6.12.` unaffected `6.17.8 - <= 6.17.` unaffected `6.18 - <= *`

References

https://git.kernel.org/stable/c/70180a6031056096c93ed2f47c41803268bdd91c

https://git.kernel.org/stable/c/3c91c8f424d3e44c8645ab765a38773e58afb07d

https://git.kernel.org/stable/c/2f6115ad8864cf3f48598f26c74c7c8e5c391919

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-68167

Description

Affected Products

References