CVE-2025-68294
Description
In the Linux kernel, the following vulnerability has been resolved:io_uring/net: ensure vectored buffer node import is tied to notificationWhen support for vectored registered buffers was added, the importitself is using req rather than the notification io_kiocb, sr->notif.For non-vectored imports, sr->notif is correctly used. This is importantas the lifetime of the two may be different. Use the correct io_kiocbfor the vectored buffer import.
Risk Information
Base Score
6.6
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
EPSS Score
Exploitation Probability
0.027
Associated Vulnerability
No records foundPatch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234