CVE-2025-68374

Published: Dec 24, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: md: fix rcu protection in md_wakeup_thread We attempted to use RCU to protect the pointer 'thread', but directly passed the value when calling md_wakeup_thread(). This means that the RCU pointer has been acquired before rcu_read_lock(), which renders rcu_read_lock() ineffective and could lead to a use-after-free.

Vendor	Product	Versions
Linux	Linux	affected `4469315439827290923fce4f3f672599cabeb366 - < 21989cb5034c835b212385a2afadf279d8069da0` affected `4469315439827290923fce4f3f672599cabeb366 - < a4bd1caf591faeae44cb10b6517e7dacb5139bda` affected `4469315439827290923fce4f3f672599cabeb366 - < f98b191f78124405294481dea85f8a22a3eb0a59` affected `4469315439827290923fce4f3f672599cabeb366 - < 0dc76205549b4c25705e54345f211b9f66e018a0`
Linux	Linux	affected `6.5` unaffected `0 - < 6.5` unaffected `6.12.63 - <= 6.12.` unaffected `6.17.13 - <= 6.17.` unaffected `6.18.2 - <= 6.18.*` +1 more versions

References

https://git.kernel.org/stable/c/21989cb5034c835b212385a2afadf279d8069da0

https://git.kernel.org/stable/c/a4bd1caf591faeae44cb10b6517e7dacb5139bda

https://git.kernel.org/stable/c/f98b191f78124405294481dea85f8a22a3eb0a59

https://git.kernel.org/stable/c/0dc76205549b4c25705e54345f211b9f66e018a0

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-68374

Description

Affected Products

References