What is CVE-2025-68239?

CVE-2025-68239 is a unscored severity Linux kernel vulnerability. CVE-2025-68239 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2025-68239?

CVE-2025-68239 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2025-68239?

No patch is currently available for CVE-2025-68239. Monitor the NIST NVD and your Linux distribution's security advisories for updates.

Is CVE-2025-68239 actively exploited?

CVE-2025-68239 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2025-68239

In the Linux kernel, the following vulnerability has been resolved: binfmt_misc: restore write access before closing files opened by open_exec() bm_register_write() opens an executable file using open_exec(), which internally calls do_open_execat() and denies write access on the file to avoid modification while it is being executed. However, when an error occurs, bm_register_write() closes the file using filp_close() directly. This does not restore the write permission, which may cause subsequent write operations on the same file to fail. Fix this by calling exe_file_allow_write_access() before filp_close() to restore the write permission properly.

Package Linux Kernel

Published 2025-12-16

Last modified 2026-06-01

Patch available

Awaiting data

References

The following references provide additional information about CVE-2025-68239 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/480ac88431703f2adbb8e6b5bd73c3f3cf9f3d7f
Patch
Kernel patch commit
https://git.kernel.org/stable/c/54274ff90488b6c0f595a6518faed3cf0bc966eb
Patch
Kernel patch commit
https://git.kernel.org/stable/c/6cce7bc7fac8471c832696720d9c8f2a976d9c54
Patch

6 patch commits total View all on NVD