CVE-2025-68797
Published: Jan 13, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: char: applicom: fix NULL pointer dereference in ac_ioctl Discovered by Atuin - Automated Vulnerability Discovery Engine. In ac_ioctl, the validation of IndexCard and the check for a valid RamIO pointer are skipped when cmd is 6. However, the function unconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the end. If cmd is 6, IndexCard may reference a board that does not exist (where RamIO is NULL), leading to a NULL pointer dereference. Fix this by skipping the readb access when cmd is 6, as this command is a global information query and does not target a specific board context.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 5a6240804fb7bbd4f5f6e706955248a6f4c1abbcaffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < d1b0452280029d05a98c75631131ee61c0b0d084affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 0b8b353e09888bccee405e0dd6feafb60360f478affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < d285517429a75423789e6408653e57b6fdfc8e54affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 74883565c621eec6cd2e35fe6d27454cf2810c23+2 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 5.10.248 - <= 5.10.*unaffected 5.15.198 - <= 5.15.*unaffected 6.1.160 - <= 6.1.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now