CVE-2025-68808
- Source
- https://cve.org/CVERecord?id=CVE-2025-68808
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68808.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-68808
- Downstream
- Related
- Published
- 2026-01-13T15:29:15.164Z
- Modified
- 2026-03-12T04:31:57.692384Z
- Summary
- media: vidtv: initialize local pointers upon transfer of memory ownership
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
media: vidtv: initialize local pointers upon transfer of memory ownership
vidtvchannelsiinit() creates a temporary list (program, service, event) and ownership of the memory itself is transferred to the PAT/SDT/EIT tables through vidtvpsipatprogramassign(), vidtvpsisdtserviceassign(), vidtvpsieitevent_assign().
The problem here is that the local pointer where the memory ownership transfer was completed is not initialized to NULL. This causes the vidtvpsipmtcreatesecforeachpatentry() function to fail, and in the flow that jumps to freeeit, the memory that was freed by vidtvpsi_*tabledestroy() can be accessed again by vidtvpsi*eventdestroy() due to the uninitialized local pointer, so it is freed once again.
Therefore, to prevent use-after-free and double-free vulnerability, local pointers must be initialized to NULL when transferring memory ownership.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68808.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/12ab6ebb37789b84073e83e4d9b14a5e0d133323
- https://git.kernel.org/stable/c/30f4d4e5224a9e44e9ceb3956489462319d804ce
- https://git.kernel.org/stable/c/3caa18d35f1dabe85a3dd31bc387f391ac9f9b4e
- https://git.kernel.org/stable/c/98aabfe2d79f74613abc2b0b1cef08f97eaf5322
- https://git.kernel.org/stable/c/a69c7fd603bf5ad93177394fbd9711922ee81032
- https://git.kernel.org/stable/c/c342e294dac4988c8ada759b2f057246e48c5108
- https://git.kernel.org/stable/c/fb9bd6d8d314b748e946ed6555eb4a956ee8c4d8
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68808.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-68808
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced3be8037960bccd13052cfdeba8805ad785041d70Fixedc342e294dac4988c8ada759b2f057246e48c5108Fixed12ab6ebb37789b84073e83e4d9b14a5e0d133323Fixed3caa18d35f1dabe85a3dd31bc387f391ac9f9b4eFixedfb9bd6d8d314b748e946ed6555eb4a956ee8c4d8Fixeda69c7fd603bf5ad93177394fbd9711922ee81032Fixed30f4d4e5224a9e44e9ceb3956489462319d804ceFixed98aabfe2d79f74613abc2b0b1cef08f97eaf5322
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced5.10.0Fixed5.10.248
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.198
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.160
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.120
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.64
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.18.3