CVE-2025-68197

Published: Dec 16, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix null pointer dereference in bnxt_bs_trace_check_wrap() With older FW, we may get the ASYNC_EVENT_CMPL_EVENT_ID_DBG_BUF_PRODUCER for FW trace data type that has not been initialized. This will result in a crash in bnxt_bs_trace_type_wrap(). Add a guard to check for a valid magic_byte pointer before proceeding.

Vendor	Product	Versions
Linux	Linux	affected `84fcd9449fd7882ddfb05ba64d75f9be2d29b2e9 - < 689ae5ba31293eebb7f21c0ef8939468ac72b5ce` affected `84fcd9449fd7882ddfb05ba64d75f9be2d29b2e9 - < ff02be05f78399c766be68ab0b2285ff90b2aaa8`
Linux	Linux	affected `6.13` unaffected `0 - < 6.13` unaffected `6.17.8 - <= 6.17.` unaffected `6.18 - <= `

References

https://git.kernel.org/stable/c/689ae5ba31293eebb7f21c0ef8939468ac72b5ce

https://git.kernel.org/stable/c/ff02be05f78399c766be68ab0b2285ff90b2aaa8

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-68197

Description

Affected Products

References