What is CVE-2025-68254?

CVE-2025-68254 is a unscored severity Linux kernel vulnerability, affecting Linux kernel versions from 4.12 onward and patched in 5.15.198, 6.1.160, 6.6.120 and others. CVE-2025-68254 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2025-68254?

CVE-2025-68254 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2025-68254?

Yes, CVE-2025-68254 has been patched. Fixed versions include 5.15.198, 6.1.160, 6.6.120 and others. If you are running Linux kernel 4.12 or later up to the fix versions, apply the relevant patch for your kernel branch.

Is CVE-2025-68254 actively exploited?

CVE-2025-68254 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2025-68254

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing The Extended Supported Rates (ESR) IE handling in OnBeacon accessed *(p + 1 + ielen) and *(p + 2 + ielen) without verifying that these offsets lie within the received frame buffer. A malformed beacon with an ESR IE positioned at the end of the buffer could cause an out-of-bounds read, potentially triggering a kernel panic. Add a boundary check to ensure that the ESR IE body and the subsequent bytes are within the limits of the frame before attempting to access them. This prevents OOB reads caused by malformed beacon frames.

Package Linux Kernel

Published 2025-12-16

Last modified 2026-04-15

Patch available

Yes

Affected versions

Linux kernel versions 4.12 and later are affected. Fixed in 5.15.198, 6.1.160, 6.6.120, 6.12.62, 6.17.12, 6.18.1, 6.19 and their respective stable series.

Affected from

≥ 4.12

Fixed in

✓ 5.15.198 5.15.x ✓ 6.1.160 6.1.x ✓ 6.6.120 6.6.x ✓ 6.12.62 6.12.x ✓ 6.17.12 6.17.x ✓ 6.18.1 6.18.x ✓ 6.19

References

The following references provide additional information about CVE-2025-68254 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/38292407c2bb5b2b3131aaace4ecc7a829b40b76
Patch
Kernel patch commit
https://git.kernel.org/stable/c/502ddcc405b69fa92e0add6c1714d654504f6fd7
Patch
Kernel patch commit
https://git.kernel.org/stable/c/bb5940193d813449540d8d3a82abc045be41f48a
Patch

7 patch commits total View all on NVD

Frequently asked questions

What is CVE-2025-68254?

CVE-2025-68254 is a unscored severity Linux kernel vulnerability . It affects Linux kernel versions from 4.12 onward and has been patched in 5.15.198, 6.1.160, 6.6.120 and others. CVE-2025-68254 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
Is there a patch available for CVE-2025-68254?

Yes — CVE-2025-68254 has been patched. Fixed versions include 5.15.198, 6.1.160, 6.6.120 and others. If you are running Linux kernel 4.12 or later up to the fix versions, apply the relevant patch for your kernel branch.
Is CVE-2025-68254 actively exploited?

No — CVE-2025-68254 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.