CVE-2025-68737 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-68737 PUBLISHED CVSS 8.699999809265137 HIGH

In the Linux kernel, the following vulnerability has been resolved: arm64/pageattr: Propagate return value from __change_memory_common The rodata=on security measure requires that any code path which does vmalloc -> set_memory_ro/set_memory_rox must protect the linear map alias too. Therefore, if such a call fails, we must abort set_memory_* and caller must take appropriate action; currently we are suppressing the error, and there is a real chance of such an error arising post commit a166563e7ec3 ("arm64: mm: support large block mapping when rodata=full"). Therefore, propagate any error to the caller.

EPSS 0.03% · 7.6th percentile

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.03%

7.6th percentile

Affected Products

Vendor	Product	Versions
Linux	Linux	a166563e7ec375b38a0fd3a58f7b77e50a6bc6a8, 0, 6.18.2
linux	linux_kernel	6.18, 6.18, 6.18

Timeline

Dec 24, 2025 CVE Published
Dec 24, 2025 PoC Published
Dec 25, 2025 EPSS Score
Dec 28, 2025 EPSS Score
Dec 29, 2025 CVE Updated
Dec 31, 2025 EPSS Score
Jan 3, 2026 EPSS Score
Jan 6, 2026 EPSS Score
Jan 10, 2026 EPSS Score
Jan 13, 2026 EPSS Score
Jan 16, 2026 EPSS Score
Jan 19, 2026 EPSS Score

References

Open in Interactive Console →