Out-of-bounds Read in Linux Kernel Affects Staging Driver
CVE-2025-68254

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 December 2025

What is CVE-2025-68254?

A vulnerability in the Linux kernel's staging driver for rtl8723bs has been identified, involving improper handling of the Extended Supported Rates (ESR) Information Element (IE) during OnBeacon processing. The issue arises when accessing certain offsets in the beacon frame buffer without confirming their validity. If a malformed beacon is received with the ESR IE located at the end of the buffer, it may lead to an out-of-bounds read scenario. This can result in instability within the kernel, potentially causing a kernel panic. The resolution involves implementing a boundary check for the ESR IE body and the subsequent bytes to prevent such out-of-bounds reads from occurring.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch