Memory Management Vulnerability in Linux Kernel Affects NVIDIA Products
CVE-2025-68233

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 December 2025

What is CVE-2025-68233?

A memory management vulnerability has been identified in the Linux kernel, specifically related to the drm/tegra module. The issue arises from the host1x_memory_context_alloc() function, which fails to release the Process ID (PID) as expected, thus leading to potential PID leaks. This vulnerability highlights the importance of proper PID handling to prevent resource leaks and ensure system stability. A call to put_pid() is needed to complement the existing get_task_pid() function, allowing for the appropriate freeing of memory resources.

Affected Version(s)

Linux e09db97889ec647ad373f7a7422c83099c6120c5 < 6b572e5154af08ee13f8d2673e86f83bc5ff86cd

Linux e09db97889ec647ad373f7a7422c83099c6120c5 < 2e78580e6e7deac6556236ef96db5bbf7b46857e

Linux e09db97889ec647ad373f7a7422c83099c6120c5

References

https://git.kernel.org/stable/c/6b572e5154af08ee13f8d2673...

https://git.kernel.org/stable/c/2e78580e6e7deac6556236ef9...

https://git.kernel.org/stable/c/cbf2cbdb0733d7974dab296ff...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 16, 2025
Vulnerability Reserved
Dec 16, 2025

JSON