VDB

DEBIAN-CVE-2025-68784

DEBIAN-CVE-2025-68784 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: xfs: fix a UAF problem in xattr repair The xchk_setup_xattr_buf function can allocate a new value buffer, which means that any reference to ab->value before the call could become a dangling pointer. Fix this by moving an assignment to after the buffer setup.

Affected Products

VendorProductVersions
Debian:14linux6.12.38-1, 6.12.43-1, 6.12.43-1~bpo12+1
Debian:13linux0, 6.12.41-1, 6.12.43-1

Timeline

  • Jan 13, 2026 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›