Linux Kernel Vulnerability in Comedi Driver Affecting Device IOCTL Operations
CVE-2025-68257

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 December 2025

What is CVE-2025-68257?

A vulnerability in the Linux kernel's comedi driver has been identified, stemming from the absence of a required sanity check for a device's connection status within compat IOCTL handlers. This flaw allows the possibility of executing select IOCTLs on unconfigured devices, which can lead to critical errors, including kernel crashes due to a NULL pointer dereference. The issue primarily affects i386 kernels and is related to the improper handling of callbacks when performing ioctl operations, consequently bypassing essential configuration steps. The resolution enhances the reliability of device interactions by validating the device’s attached state before any ioctl commands are executed.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 3fbfd2223a271426509830e6340c386a1054cfad < 4836ba483a22ebd076c8faaf8293a7295fad4142

Linux 3fbfd2223a271426509830e6340c386a1054cfad < 7141915bf0c41cb57d83cdbaf695b8c731b16b71

Linux 3fbfd2223a271426509830e6340c386a1054cfad

References

https://git.kernel.org/stable/c/4836ba483a22ebd076c8faaf8...
https://git.kernel.org/stable/c/7141915bf0c41cb57d83cdbaf...
https://git.kernel.org/stable/c/f13895c03620933a58907e325...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.