CVE-2025-68724
- Source
- https://cve.org/CVERecord?id=CVE-2025-68724
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-68724.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-68724
- Downstream
- Related
- Published
- 2025-12-24T10:33:08.932Z
- Modified
- 2026-03-23T05:31:28.449974Z
- Summary
- crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid
Use checkaddoverflow() to guard against potential integer overflows when adding the binary blob lengths and the size of an asymmetrickeyid structure and return ERR_PTR(-EOVERFLOW) accordingly. This prevents a possible buffer overflow when copying data from potentially malicious X.509 certificate fields that can be arbitrarily large, such as ASN.1 INTEGER serial numbers, issuer names, etc.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68724.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/5b8ac617c8dab5cad3c4dc8d84d0987808a0f99c
- https://git.kernel.org/stable/c/60a7be5ee74408147e439164ac067e418ca74bb4
- https://git.kernel.org/stable/c/6af753ac5205115e6c310c8c4236c01b59a1c44f
- https://git.kernel.org/stable/c/b7090a5c153105b9fd221a5a81459ee8cd5babd6
- https://git.kernel.org/stable/c/c13c6e9de91d7f1dd7df756b1fa5a1f968839d76
- https://git.kernel.org/stable/c/c73be4f51eed98fa0c7c189db8f279e1c86bfbf7
- https://git.kernel.org/stable/c/df0845cf447ae1556c3440b8b155de0926cbaa56
- https://git.kernel.org/stable/c/dfc1613961828745165aec6552c3818fa14ab725
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68724.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-68724
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7901c1a8effbe5f89673bfc09d6e37b8f334f1a7Fixed60a7be5ee74408147e439164ac067e418ca74bb4Fixedc13c6e9de91d7f1dd7df756b1fa5a1f968839d76Fixeddfc1613961828745165aec6552c3818fa14ab725Fixed5b8ac617c8dab5cad3c4dc8d84d0987808a0f99cFixedc73be4f51eed98fa0c7c189db8f279e1c86bfbf7Fixed6af753ac5205115e6c310c8c4236c01b59a1c44fFixedb7090a5c153105b9fd221a5a81459ee8cd5babd6Fixeddf0845cf447ae1556c3440b8b155de0926cbaa56
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced3.18.0Fixed5.10.248
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.198
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.160
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.120
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.63
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.17.13
- Type
- ECOSYSTEM
- Events
-
Introduced6.18.0Fixed6.18.2