CVE-2025-68791

Summary

In the Linux kernel, the following vulnerability has been resolved:

fuse: missing copy_finish in fuse-over-io-uring argument copies

Fix a possible reference count leak of payload pages during fuse argument copies.

[Joanne: simplified error cleanup]

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc090c8abae4b6b77a1bee116aa6c385456ebef96 < b79938863f436960eff209130f025c4bd3026bf8affected
LinuxLinuxc090c8abae4b6b77a1bee116aa6c385456ebef96 < 6e0d7f7f4a43ac8868e98c87ecf48805aa8c24ddaffected
LinuxLinux6.14affected
LinuxLinux0 < 6.14unaffected
LinuxLinux6.18.3 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References