CVE-2025-68784

Published: Jan 13, 2026

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: xfs: fix a UAF problem in xattr repair The xchk_setup_xattr_buf function can allocate a new value buffer, which means that any reference to ab->value before the call could become a dangling pointer. Fix this by moving an assignment to after the buffer setup.

Vendor	Product	Versions
Linux	Linux	affected `e47dcf113ae348678143cc935a1183059c02c9ad - < 1e2d3aa19c7962b9474b22893160cb460494c45f` affected `e47dcf113ae348678143cc935a1183059c02c9ad - < d29ed9ff972afe17c215cab171761d7a15d7063f` affected `e47dcf113ae348678143cc935a1183059c02c9ad - < 5990fd756943836978ad184aac980e2b36ab7e01`
Linux	Linux	affected `6.10` unaffected `0 - < 6.10` unaffected `6.12.64 - <= 6.12.` unaffected `6.18.3 - <= 6.18.` unaffected `6.19 - <= *`

References

https://git.kernel.org/stable/c/1e2d3aa19c7962b9474b22893160cb460494c45f

https://git.kernel.org/stable/c/d29ed9ff972afe17c215cab171761d7a15d7063f

https://git.kernel.org/stable/c/5990fd756943836978ad184aac980e2b36ab7e01

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-68784

Description

Affected Products

References