CVE-2025-68362
CVE-2025-68362 is a security vulnerability that is still awaiting full analysis and scoring. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- EPSS exploit prediction: 0% (7th percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2025-205092
- Published:
- Last modified:
Description
In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() The rtl8187_rx_cb() calculates the rx descriptor header address by subtracting its size from the skb tail pointer. However, it does not validate if the received packet (skb->len from urb->actual_length) is large enough to contain this header. If a truncated packet is received, this will lead to a buffer underflow, reading memory before the start of the skb data area, and causing a kernel panic. Add length checks for both rtl8187 and rtl8187b descriptor headers before attempting to access them, dropping the packet cleanly if the check fails.
Frequently asked questions
- What is CVE-2025-68362?
- In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() The rtl8187_rx_cb() calculates the rx descriptor header address by subtracting its size from the skb tail pointer. However, it does not validate if the received packet (skb->len from urb->actual_length) is large enough to contain this header. If a truncated packet is received, this will lead to a buffer underflow, reading memory before the start of the skb data area, and causing a kernel panic. Add length checks for both rtl8187 and rtl8187b descriptor headers before attempting to access them, dropping the packet cleanly if the check fails.
- Is CVE-2025-68362 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (7th percentile), an estimate of the probability of exploitation in the next 30 days.
- How do I fix CVE-2025-68362?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- Does CVE-2025-68362 have an EU (EUVD) identifier?
- Yes. CVE-2025-68362 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2025-205092.
- When was CVE-2025-68362 published?
- CVE-2025-68362 was published on 2025-12-24 and last updated on 2026-06-17.
References
- https://git.kernel.org/stable/c/118e12bf3e4288cf845cd3759bd9d4c99f91aab5
- https://git.kernel.org/stable/c/4758770a673c60d8f615809304d72e1432fa6355
- https://git.kernel.org/stable/c/5ebf0fe7eaef9f6173a4c6ea77c5353e21645d15
- https://git.kernel.org/stable/c/638d4148e166d114a4cd7becaae992ce1a815ed8
- https://git.kernel.org/stable/c/6a96bd0d94305fd04a6ac64446ec113bae289384
- https://git.kernel.org/stable/c/b647d2574e4583c2e3b0ab35568f60c88e910840
- https://git.kernel.org/stable/c/dc153401fb26c1640a2b279c47b65e1c416af276
- https://git.kernel.org/stable/c/e2f3ea15e804607e0a4a34a2f6c331c8750b68bc