Out of Bounds Access in Linux Kernel Due to Error Code Issue in irqchip/mchp-eic
CVE-2025-68766

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 5 January 2026

What is CVE-2025-68766?

A flaw in the Linux kernel's irqchip/mchp-eic component allows for an out of bounds access when the function irq_domain_translate_twocell() unexpectedly evaluates 'hwirq' to a value greater than or equal to MCHP_EIC_NIRQ. The checking mechanism for invalid values is present; however, it fails to set an appropriate error code, leading to potential instability in systems relying on these components. Developers are advised to be cautious when working with this part of the kernel to avoid unintended behavior.

Affected Version(s)

Linux 00fa3461c86dd289b441d4d5a6bb236064bd207b < 3873afcb57614c1aaa5b6715554d6d1c22cac95a

Linux 00fa3461c86dd289b441d4d5a6bb236064bd207b < 09efe7cfbf919c4d763bc425473fcfee0dc98356

Linux 00fa3461c86dd289b441d4d5a6bb236064bd207b

References

https://git.kernel.org/stable/c/3873afcb57614c1aaa5b67155...

https://git.kernel.org/stable/c/09efe7cfbf919c4d763bc4254...

https://git.kernel.org/stable/c/efd65e2e2fd96f7aaa5cb07d7...

Timeline

Vulnerability published
Jan 5, 2026
Vulnerability Reserved
Dec 24, 2025

JSON