Memory Leak in USB Bulk Transport Affects Linux Kernel
CVE-2025-68288
What is CVE-2025-68288?
A memory leak vulnerability has been found in the Linux kernel, specifically within the USB bulk transport subsystem. This vulnerability results from a failure to clear the Command Status Wrapper (CSW) data in the transfer buffer after validating USB storage devices that bypass the data phase. Consequentially, sensitive USB protocol data may inadvertently leak into user space via SCSI generic interfaces. The issue emerged during testing with the 'ioctl_sg01' from the Linux Test Project, where abnormal data patterns like 'USBS' were detected in the transfer buffer. A fix has been implemented to address this by ensuring that CSW data is zeroed out immediately post-validation, thereby mitigating potential data exposure risks.
Affected Version(s)
Linux a45b599ad808c3c982fdcdc12b0b8611c2f92824 < 83f0241959831586d9b6d47f6bd5d3dec8f43bf0
Linux a45b599ad808c3c982fdcdc12b0b8611c2f92824 < 4ba515dfff7eeca369ab85cdbb3f3b231c71720c
Linux a45b599ad808c3c982fdcdc12b0b8611c2f92824 < 467fec3cefbeb9e3ea80f457da9a5666a71ca0d0