CVE-2025-68362
- Source
- https://cve.org/CVERecord?id=CVE-2025-68362
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68362.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-68362
- Downstream
- Related
- Published
- 2025-12-24T10:32:50.492Z
- Modified
- 2026-03-20T12:46:23.110909Z
- Summary
- wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187rxcb()
The rtl8187rxcb() calculates the rx descriptor header address by subtracting its size from the skb tail pointer. However, it does not validate if the received packet (skb->len from urb->actual_length) is large enough to contain this header.
If a truncated packet is received, this will lead to a buffer underflow, reading memory before the start of the skb data area, and causing a kernel panic.
Add length checks for both rtl8187 and rtl8187b descriptor headers before attempting to access them, dropping the packet cleanly if the check fails.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68362.json" }- References
-
- https://git.kernel.org/stable/c/118e12bf3e4288cf845cd3759bd9d4c99f91aab5
- https://git.kernel.org/stable/c/4758770a673c60d8f615809304d72e1432fa6355
- https://git.kernel.org/stable/c/5ebf0fe7eaef9f6173a4c6ea77c5353e21645d15
- https://git.kernel.org/stable/c/638d4148e166d114a4cd7becaae992ce1a815ed8
- https://git.kernel.org/stable/c/6a96bd0d94305fd04a6ac64446ec113bae289384
- https://git.kernel.org/stable/c/b647d2574e4583c2e3b0ab35568f60c88e910840
- https://git.kernel.org/stable/c/dc153401fb26c1640a2b279c47b65e1c416af276
- https://git.kernel.org/stable/c/e2f3ea15e804607e0a4a34a2f6c331c8750b68bc
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68362.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-68362
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced6f7853f3cbe457067e9fe05461f56c7ea4ac488cFixed118e12bf3e4288cf845cd3759bd9d4c99f91aab5Fixed6a96bd0d94305fd04a6ac64446ec113bae289384Fixede2f3ea15e804607e0a4a34a2f6c331c8750b68bcFixeddc153401fb26c1640a2b279c47b65e1c416af276Fixed4758770a673c60d8f615809304d72e1432fa6355Fixed638d4148e166d114a4cd7becaae992ce1a815ed8Fixed5ebf0fe7eaef9f6173a4c6ea77c5353e21645d15Fixedb647d2574e4583c2e3b0ab35568f60c88e910840
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.27Fixed5.10.248
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.198
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.160
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.120
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.63
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.17.13
- Type
- ECOSYSTEM
- Events
-
Introduced6.18.0Fixed6.18.2