SB2026011496 - Input validation error in Linux kernel notify
Published: January 14, 2026
Security Bulletin ID
SB2026011496
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Input validation error (CVE-ID: CVE-2025-68788)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the __fsnotify_parent() function in fs/notify/fsnotify.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/635bc4def026a24e071436f4f356ea08c0eed6ff
- https://git.kernel.org/stable/c/6a7d7d96eeeab7af2bd01afbb3d9878a11a13d91
- https://git.kernel.org/stable/c/7a93edb23bcf07a3aaf8b598edfc2faa8fbcc0b6
- https://git.kernel.org/stable/c/82f7416bcbd951549e758d15fc1a96a5afc2e900
- https://git.kernel.org/stable/c/e0643d46759db8b84c0504a676043e5e341b6c81