What is CVE-2025-68735?

CVE-2025-68735 is a unscored severity Linux kernel vulnerability, affecting Linux kernel versions from 6.10 onward and patched in 6.17.13, 6.18.2 and 6.19. CVE-2025-68735 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2025-68735?

CVE-2025-68735 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2025-68735?

Yes, CVE-2025-68735 has been patched. Fixed versions include 6.17.13, 6.18.2 and 6.19. If you are running Linux kernel 6.10 or later up to the fix versions, apply the relevant patch for your kernel branch.

Is CVE-2025-68735 actively exploited?

CVE-2025-68735 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2025-68735

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Prevent potential UAF in group creation This commit prevents the possibility of a use after free issue in the GROUP_CREATE ioctl function, which arose as pointer to the group is accessed in that ioctl function after storing it in the Xarray. A malicious userspace can second guess the handle of a group and try to call GROUP_DESTROY ioctl from another thread around the same time as GROUP_CREATE ioctl. To prevent the use after free exploit, this commit uses a mark on an entry of group pool Xarray which is added just before returning from the GROUP_CREATE ioctl function. The mark is checked for all ioctls that specify the group handle and so userspace won't be abe to delete a group that isn't marked yet. v2: Add R-bs and fixes tags

Package Linux Kernel

Published 2025-12-24

Last modified 2026-04-15

Patch available

Yes

Affected versions

Linux kernel versions 6.10 and later are affected. Fixed in 6.17.13, 6.18.2, 6.19 and their respective stable series.

Affected from

≥ 6.10

Fixed in

✓ 6.17.13 6.17.x ✓ 6.18.2 6.18.x ✓ 6.19

References

The following references provide additional information about CVE-2025-68735 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/c646ebff3fa571e7ea974235286fb9ed3edc260c
Patch
Kernel patch commit
https://git.kernel.org/stable/c/deb8b2491f6b9882ae02d7dc2651c7bf4f3b7e05
Patch
Kernel patch commit
https://git.kernel.org/stable/c/eec7e23d848d2194dd8791fcd0f4a54d4378eecd
Patch

Frequently asked questions

What is CVE-2025-68735?

CVE-2025-68735 is a unscored severity Linux kernel vulnerability . It affects Linux kernel versions from 6.10 onward and has been patched in 6.17.13, 6.18.2 and 6.19. CVE-2025-68735 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
Is there a patch available for CVE-2025-68735?

Yes — CVE-2025-68735 has been patched. Fixed versions include 6.17.13, 6.18.2 and 6.19. If you are running Linux kernel 6.10 or later up to the fix versions, apply the relevant patch for your kernel branch.
Is CVE-2025-68735 actively exploited?

No — CVE-2025-68735 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.