Description

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Prevent potential UAF in group creation This commit prevents the possibility of a use after free issue in the GROUP_CREATE ioctl function, which arose as pointer to the group is accessed in that ioctl function after storing it in the Xarray. A malicious userspace can second guess the handle of a group and try to call GROUP_DESTROY ioctl from another thread around the same time as GROUP_CREATE ioctl. To prevent the use after free exploit, this commit uses a mark on an entry of group pool Xarray which is added just before returning from the GROUP_CREATE ioctl function. The mark is checked for all ioctls that specify the group handle and so userspace won't be abe to delete a group that isn't marked yet. v2: Add R-bs and fixes tags

INFO

Published Date :

2025-12-24T12:09:34.364Z

Last Modified :

2026-02-09T08:32:30.851Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-68735 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-68735.

URL Resource
https://git.kernel.org/stable/c/c646ebff3fa571e7ea974235286fb9ed3edc260c cve-icon cve-icon
https://git.kernel.org/stable/c/deb8b2491f6b9882ae02d7dc2651c7bf4f3b7e05 cve-icon cve-icon
https://git.kernel.org/stable/c/eec7e23d848d2194dd8791fcd0f4a54d4378eecd cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025122410-CVE-2025-68735-dce5@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-68735 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-68735 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System