What is CVE-2025-68168?

CVE-2025-68168 is a unscored severity Linux kernel vulnerability, affecting Linux kernel versions from 5.4.255 onward and patched in 5.4.302, 5.10.247, 5.15.197 and others. CVE-2025-68168 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2025-68168?

CVE-2025-68168 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2025-68168?

Yes, CVE-2025-68168 has been patched. Fixed versions include 5.4.302, 5.10.247, 5.15.197 and others. If you are running Linux kernel 5.4.255 or later up to the fix versions, apply the relevant patch for your kernel branch.

Is CVE-2025-68168 actively exploited?

CVE-2025-68168 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2025-68168

In the Linux kernel, the following vulnerability has been resolved: jfs: fix uninitialized waitqueue in transaction manager The transaction manager initialization in txInit() was not properly initializing TxBlock[0].waitor waitqueue, causing a crash when txEnd(0) is called on read-only filesystems. When a filesystem is mounted read-only, txBegin() returns tid=0 to indicate no transaction. However, txEnd(0) still gets called and tries to access TxBlock[0].waitor via tid_to_tblock(0), but this waitqueue was never initialized because the initialization loop started at index 1 instead of 0. This causes a 'non-static key' lockdep warning and system crash: INFO: trying to register non-static key in txEnd Fix by ensuring all transaction blocks including TxBlock[0] have their waitqueues properly initialized during txInit().

Package Linux Kernel

Published 2025-12-16

Last modified 2026-04-15

Patch available

Yes

Affected versions

Linux kernel versions 5.4.255, 5.10.192, 5.15.123, 6.1.42, 4.14.324, 4.19.293, 6.4.7, 6.5 and later are affected. Fixed in 5.4.302, 5.10.247, 5.15.197, 6.1.159, 6.6.117, 6.12.58, 6.17.8, 6.18 and their respective stable series.

Affected from

≥ 5.4.255 ≥ 5.10.192 ≥ 5.15.123 ≥ 6.1.42 ≥ 4.14.324 ≥ 4.19.293 ≥ 6.4.7 ≥ 6.5

Fixed in

✓ 5.4.302 5.4.x ✓ 5.10.247 5.10.x ✓ 5.15.197 5.15.x ✓ 6.1.159 6.1.x ✓ 6.6.117 6.6.x ✓ 6.12.58 6.12.x ✓ 6.17.8 6.17.x ✓ 6.18

References

The following references provide additional information about CVE-2025-68168 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/038861414ab383b41dd35abbf9ff0ef715592d53
Patch
Kernel patch commit
https://git.kernel.org/stable/c/2a9575a372182ca075070b3cd77490dcf0c951e7
Patch
Kernel patch commit
https://git.kernel.org/stable/c/300b072df72694ea330c4c673c035253e07827b8
Patch

8 patch commits total View all on NVD

Frequently asked questions

What is CVE-2025-68168?

CVE-2025-68168 is a unscored severity Linux kernel vulnerability . It affects Linux kernel versions from 5.4.255 onward and has been patched in 5.4.302, 5.10.247, 5.15.197 and others. CVE-2025-68168 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
Is there a patch available for CVE-2025-68168?

Yes — CVE-2025-68168 has been patched. Fixed versions include 5.4.302, 5.10.247, 5.15.197 and others. If you are running Linux kernel 5.4.255 or later up to the fix versions, apply the relevant patch for your kernel branch.
Is CVE-2025-68168 actively exploited?

No — CVE-2025-68168 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.