1. Home
  2. Vulnerabilities
  3. CVE-2025-68312
0.0
NA
CVE-2025-68312
usbnet: Prevents free active kevent
Description

In the Linux kernel, the following vulnerability has been resolved: usbnet: Prevents free active kevent The root cause of this issue are: 1. When probing the usbnet device, executing usbnet_link_change(dev, 0, 0); put the kevent work in global workqueue. However, the kevent has not yet been scheduled when the usbnet device is unregistered. Therefore, executing free_netdev() results in the "free active object (kevent)" error reported here. 2. Another factor is that when calling usbnet_disconnect()->unregister_netdev(), if the usbnet device is up, ndo_stop() is executed to cancel the kevent. However, because the device is not up, ndo_stop() is not executed. The solution to this problem is to cancel the kevent before executing free_netdev().

INFO

Published Date :

Dec. 16, 2025, 4:16 p.m.

Last Modified :

Dec. 16, 2025, 4:16 p.m.

Remotely Exploit :

No

Source :

416baaa9-dc9f-4396-8d5f-8c081fb06d67
Affected Products

The following products are affected by CVE-2025-68312 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Linux linux_kernel
: Total Affected Vendor : 1 | Products : 1
Solution
Cancel kernel events before freeing network devices to prevent memory corruption.
  • Cancel pending kernel events before device unregistration.
  • Ensure proper device state checks before canceling events.
  • Schedule event cancellation before freeing network device memory.
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2025-68312.

URL Resource
https://git.kernel.org/stable/c/285d4b953f2ca03c358f986718dd89ee9bde632e
https://git.kernel.org/stable/c/2ce1de32e05445d77fc056f6ff8339cfb78a5f84
https://git.kernel.org/stable/c/3a10619fdefd3051aeb14860e4d4335529b4e94d
https://git.kernel.org/stable/c/420c84c330d1688b8c764479e5738bbdbf0a33de
https://git.kernel.org/stable/c/43005002b60ef3424719ecda16d124714b45da3b
https://git.kernel.org/stable/c/5158fb8da162e3982940f30cd01ed77bdf42c6fc
https://git.kernel.org/stable/c/88a38b135d69f5db9024ff6527232f1b51be8915
https://git.kernel.org/stable/c/9a579d6a39513069d298eee70770bbac8a148565
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2025-68312 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2025-68312 weaknesses.

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2025-68312 vulnerability anywhere in the article.

Results are limited to the first 20 news articles due to potential performance issues.

The following table lists the changes that have been made to the CVE-2025-68312 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • New CVE Received by 416baaa9-dc9f-4396-8d5f-8c081fb06d67

    Dec. 16, 2025

    Action Type Old Value New Value
    Added Description In the Linux kernel, the following vulnerability has been resolved: usbnet: Prevents free active kevent The root cause of this issue are: 1. When probing the usbnet device, executing usbnet_link_change(dev, 0, 0); put the kevent work in global workqueue. However, the kevent has not yet been scheduled when the usbnet device is unregistered. Therefore, executing free_netdev() results in the "free active object (kevent)" error reported here. 2. Another factor is that when calling usbnet_disconnect()->unregister_netdev(), if the usbnet device is up, ndo_stop() is executed to cancel the kevent. However, because the device is not up, ndo_stop() is not executed. The solution to this problem is to cancel the kevent before executing free_netdev().
    Added Reference https://git.kernel.org/stable/c/285d4b953f2ca03c358f986718dd89ee9bde632e
    Added Reference https://git.kernel.org/stable/c/2ce1de32e05445d77fc056f6ff8339cfb78a5f84
    Added Reference https://git.kernel.org/stable/c/3a10619fdefd3051aeb14860e4d4335529b4e94d
    Added Reference https://git.kernel.org/stable/c/420c84c330d1688b8c764479e5738bbdbf0a33de
    Added Reference https://git.kernel.org/stable/c/43005002b60ef3424719ecda16d124714b45da3b
    Added Reference https://git.kernel.org/stable/c/5158fb8da162e3982940f30cd01ed77bdf42c6fc
    Added Reference https://git.kernel.org/stable/c/88a38b135d69f5db9024ff6527232f1b51be8915
    Added Reference https://git.kernel.org/stable/c/9a579d6a39513069d298eee70770bbac8a148565
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
Vulnerability Scoring Details
No CVSS metrics available for this vulnerability.