Main Vulnerability Database SB2025122681

SB2025122681 - Memory leak in Linux kernel block

Published: December 26, 2025

Security Bulletin ID SB2025122681

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Memory leak (CVE-ID: CVE-2025-68348)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the __blkdev_issue_zero_pages() function in block/blk-lib.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/453e4b0c84d0db1454ff0adf655d91179e6fca3a
https://git.kernel.org/stable/c/7193407bc4457212fa38ec3aff9c640e63a8dbef
https://git.kernel.org/stable/c/7957635c679e8a01147163a3a4a1f16e1210fa03
https://git.kernel.org/stable/c/f7e3f852a42d7cd8f1af2c330d9d153e30c8adcf