CVE-2025-68309

Summary

In the Linux kernel, the following vulnerability has been resolved:

PCI/AER: Fix NULL pointer access by aer_info

The kzalloc(GFP_KERNEL) may return NULL, so all accesses to aer_info->xxx will result in kernel panic. Fix it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa57f2bfb4a5863f83087867c0e671f2418212d23 < 6618243bcc3f60825f761a41ed65fef9fe97eb25affected
LinuxLinuxa57f2bfb4a5863f83087867c0e671f2418212d23 < 0a27bdb14b028fed30a10cec2f945c38cb5ca4faaffected
LinuxLinux6.16affected
LinuxLinux0 < 6.16unaffected
LinuxLinux6.17.8 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References