CVE-2025-68376
- Source
- https://cve.org/CVERecord?id=CVE-2025-68376
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68376.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-68376
- Downstream
- Related
- Published
- 2025-12-24T10:33:05.503Z
- Modified
- 2026-05-15T04:14:12.098721524Z
- Summary
- coresight: ETR: Fix ETR buffer use-after-free issue
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
coresight: ETR: Fix ETR buffer use-after-free issue
When ETR is enabled as CSMODESYSFS, if the buffer size is changed and enabled again, currently sysfsbuf will point to the newly allocated memory(bufnew) and free the old memory(bufold). But the etrbuf that is being used by the ETR remains pointed to bufold, not updated to bufnew. In this case, it will result in a memory use-after-free issue.
Fix this by checking ETR's mode before updating and releasing bufold, if the mode is CSMODE_SYSFS, then skip updating and releasing it.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68376.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/35501ac3c7d40a7bb9568c2f89d6b56beaf9bed3
- https://git.kernel.org/stable/c/70acbc9c77686b7a521af6d7a543dcd9c324cf07
- https://git.kernel.org/stable/c/cda077a19f5c8d6ec61e5b97deca203d95e3a422
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68376.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-68376
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git