Linux Kernel Vulnerability in io_uring Notification Contexts
CVE-2025-68317

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 December 2025

What is CVE-2025-68317?

A vulnerability has been identified in the Linux kernel related to the io_uring mechanism, specifically in the handling of notification contexts. This flaw allows for ambiguous completion reports due to improper checks in chained notification contexts. Affected systems may err in processing requests, potentially leading to inconsistencies or security issues if not mitigated. It is crucial for users and administrators to apply the latest kernel updates to ensure their systems remain secure against this issue.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/aaafd17d3f4be2c15539359a5...
https://git.kernel.org/stable/c/d664a3ce3a604231a0b144c15...
https://git.kernel.org/stable/c/ab3ea6eac5f45669b091309f5...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-68317 : Linux Kernel Vulnerability in io_uring Notification Contexts