Vulnerability-Lookup

FKIE_CVE-2025-68289

Vulnerability from fkie_nvd - Published: 2025-12-16 16:16 - Updated: 2026-06-17 09:58

Severity

Summary

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_eem: Fix memory leak in eem_unwrap The existing code did not handle the failure case of usb_ep_queue in the command path, potentially leading to memory leaks. Improve error handling to free all allocated resources on usb_ep_queue failure. This patch continues to use goto logic for error handling, as the existing error handling is complex and not easily adaptable to auto-cleanup helpers. kmemleak results: unreferenced object 0xffffff895a512300 (size 240): backtrace: slab_post_alloc_hook+0xbc/0x3a4 kmem_cache_alloc+0x1b4/0x358 skb_clone+0x90/0xd8 eem_unwrap+0x1cc/0x36c unreferenced object 0xffffff8a157f4000 (size 256): backtrace: slab_post_alloc_hook+0xbc/0x3a4 __kmem_cache_alloc_node+0x1b4/0x2dc kmalloc_trace+0x48/0x140 dwc3_gadget_ep_alloc_request+0x58/0x11c usb_ep_alloc_request+0x40/0xe4 eem_unwrap+0x204/0x36c unreferenced object 0xffffff8aadbaac00 (size 128): backtrace: slab_post_alloc_hook+0xbc/0x3a4 __kmem_cache_alloc_node+0x1b4/0x2dc __kmalloc+0x64/0x1a8 eem_unwrap+0x218/0x36c unreferenced object 0xffffff89ccef3500 (size 64): backtrace: slab_post_alloc_hook+0xbc/0x3a4 __kmem_cache_alloc_node+0x1b4/0x2dc kmalloc_trace+0x48/0x140 eem_unwrap+0x238/0x36c

References

	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/0ac07e476944a5e4c2b8b087dd167dec248c1bdf
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/0dea2e0069a7e9aa034696f8065945b7be6dd6b7
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/41434488ca714ab15cb2a4d0378418d1be8052d2
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/5a1628283cd9dccf1e44acfb74e77504f4dc7472
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/a9985a88b2fc29fbe1657fe8518908e261d6889c
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e4f5ce990818d37930cd9fb0be29eee0553c59d9
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e72c963177c708a167a7e17ed6c76320815157cf

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "affected": [
    {
      "affectedData": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/gadget/function/f_eem.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "a9985a88b2fc29fbe1657fe8518908e261d6889c",
              "status": "affected",
              "version": "3b545788505b2e2883aff13bdddeacaf88942a4f",
              "versionType": "git"
            },
            {
              "lessThan": "5a1628283cd9dccf1e44acfb74e77504f4dc7472",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "lessThan": "0ac07e476944a5e4c2b8b087dd167dec248c1bdf",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "lessThan": "41434488ca714ab15cb2a4d0378418d1be8052d2",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "lessThan": "e72c963177c708a167a7e17ed6c76320815157cf",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "lessThan": "0dea2e0069a7e9aa034696f8065945b7be6dd6b7",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "lessThan": "e4f5ce990818d37930cd9fb0be29eee0553c59d9",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "d55a236f1bab102e353ea5abb7b7b6ff7e847294",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "8e275d3d5915a8f7db3786e3f84534bb48245f4c",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "3680a6ff9a9ccd3c664663da04bef2534397d591",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "d654be97e1b679616e3337b871a9ec8f31a88841",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "8bdef7f21cb6e53c0ce3e1cbcb05975aa0dd0fe9",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "77d7f071883cf2921a7547f82e41f15f7f860e35",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "a55093941e38113dd6f5f5d5d2705fec3018f332",
              "versionType": "git"
            },
            {
              "lessThan": "5.10.247",
              "status": "affected",
              "version": "5.10.50",
              "versionType": "semver"
            },
            {
              "lessThan": "4.5",
              "status": "affected",
              "version": "4.4.276",
              "versionType": "semver"
            },
            {
              "lessThan": "4.10",
              "status": "affected",
              "version": "4.9.276",
              "versionType": "semver"
            },
            {
              "lessThan": "4.15",
              "status": "affected",
              "version": "4.14.240",
              "versionType": "semver"
            },
            {
              "lessThan": "4.20",
              "status": "affected",
              "version": "4.19.198",
              "versionType": "semver"
            },
            {
              "lessThan": "5.5",
              "status": "affected",
              "version": "5.4.132",
              "versionType": "semver"
            },
            {
              "lessThan": "5.13",
              "status": "affected",
              "version": "5.12.17",
              "versionType": "semver"
            },
            {
              "lessThan": "5.14",
              "status": "affected",
              "version": "5.13.2",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/gadget/function/f_eem.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.247",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.197",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.159",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.119",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.61",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.17.*",
              "status": "unaffected",
              "version": "6.17.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.18",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_eem: Fix memory leak in eem_unwrap\n\nThe existing code did not handle the failure case of usb_ep_queue in the\ncommand path, potentially leading to memory leaks.\n\nImprove error handling to free all allocated resources on usb_ep_queue\nfailure. This patch continues to use goto logic for error handling, as the\nexisting error handling is complex and not easily adaptable to auto-cleanup\nhelpers.\n\nkmemleak results:\n  unreferenced object 0xffffff895a512300 (size 240):\n    backtrace:\n      slab_post_alloc_hook+0xbc/0x3a4\n      kmem_cache_alloc+0x1b4/0x358\n      skb_clone+0x90/0xd8\n      eem_unwrap+0x1cc/0x36c\n  unreferenced object 0xffffff8a157f4000 (size 256):\n    backtrace:\n      slab_post_alloc_hook+0xbc/0x3a4\n      __kmem_cache_alloc_node+0x1b4/0x2dc\n      kmalloc_trace+0x48/0x140\n      dwc3_gadget_ep_alloc_request+0x58/0x11c\n      usb_ep_alloc_request+0x40/0xe4\n      eem_unwrap+0x204/0x36c\n  unreferenced object 0xffffff8aadbaac00 (size 128):\n    backtrace:\n      slab_post_alloc_hook+0xbc/0x3a4\n      __kmem_cache_alloc_node+0x1b4/0x2dc\n      __kmalloc+0x64/0x1a8\n      eem_unwrap+0x218/0x36c\n  unreferenced object 0xffffff89ccef3500 (size 64):\n    backtrace:\n      slab_post_alloc_hook+0xbc/0x3a4\n      __kmem_cache_alloc_node+0x1b4/0x2dc\n      kmalloc_trace+0x48/0x140\n      eem_unwrap+0x238/0x36c"
    }
  ],
  "id": "CVE-2025-68289",
  "lastModified": "2026-06-17T09:58:52.687",
  "metrics": {},
  "published": "2025-12-16T16:16:07.747",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/0ac07e476944a5e4c2b8b087dd167dec248c1bdf"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/0dea2e0069a7e9aa034696f8065945b7be6dd6b7"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/41434488ca714ab15cb2a4d0378418d1be8052d2"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/5a1628283cd9dccf1e44acfb74e77504f4dc7472"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/a9985a88b2fc29fbe1657fe8518908e261d6889c"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/e4f5ce990818d37930cd9fb0be29eee0553c59d9"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/e72c963177c708a167a7e17ed6c76320815157cf"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Deferred"
}

CVE-2025-68289 (GCVE-0-2025-68289)

Vulnerability from cvelistv5 – Published: 2025-12-16 15:06 – Updated: 2026-05-23 16:02

Title

usb: gadget: f_eem: Fix memory leak in eem_unwrap

Summary

Severity

No CVSS data available.

Assigner

Linux

References

7 references

URL	Tags
https://git.kernel.org/stable/c/a9985a88b2fc29fbe…
https://git.kernel.org/stable/c/5a1628283cd9dccf1…
https://git.kernel.org/stable/c/0ac07e476944a5e4c…
https://git.kernel.org/stable/c/41434488ca714ab15…
https://git.kernel.org/stable/c/e72c963177c708a16…
https://git.kernel.org/stable/c/0dea2e0069a7e9aa0…
https://git.kernel.org/stable/c/e4f5ce990818d3793…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 3b545788505b2e2883aff13bdddeacaf88942a4f , < a9985a88b2fc29fbe1657fe8518908e261d6889c (git) Affected: 4249d6fbc10fd997abdf8a1ea49c0389a0edf706 , < 5a1628283cd9dccf1e44acfb74e77504f4dc7472 (git) Affected: 4249d6fbc10fd997abdf8a1ea49c0389a0edf706 , < 0ac07e476944a5e4c2b8b087dd167dec248c1bdf (git) Affected: 4249d6fbc10fd997abdf8a1ea49c0389a0edf706 , < 41434488ca714ab15cb2a4d0378418d1be8052d2 (git) Affected: 4249d6fbc10fd997abdf8a1ea49c0389a0edf706 , < e72c963177c708a167a7e17ed6c76320815157cf (git) Affected: 4249d6fbc10fd997abdf8a1ea49c0389a0edf706 , < 0dea2e0069a7e9aa034696f8065945b7be6dd6b7 (git) Affected: 4249d6fbc10fd997abdf8a1ea49c0389a0edf706 , < e4f5ce990818d37930cd9fb0be29eee0553c59d9 (git) Affected: d55a236f1bab102e353ea5abb7b7b6ff7e847294 (git) Affected: 8e275d3d5915a8f7db3786e3f84534bb48245f4c (git) Affected: 3680a6ff9a9ccd3c664663da04bef2534397d591 (git) Affected: d654be97e1b679616e3337b871a9ec8f31a88841 (git) Affected: 8bdef7f21cb6e53c0ce3e1cbcb05975aa0dd0fe9 (git) Affected: 77d7f071883cf2921a7547f82e41f15f7f860e35 (git) Affected: a55093941e38113dd6f5f5d5d2705fec3018f332 (git) Affected: 5.10.50 , < 5.10.247 (semver) Affected: 4.4.276 , < 4.5 (semver) Affected: 4.9.276 , < 4.10 (semver) Affected: 4.14.240 , < 4.15 (semver) Affected: 4.19.198 , < 4.20 (semver) Affected: 5.4.132 , < 5.5 (semver) Affected: 5.12.17 , < 5.13 (semver) Affected: 5.13.2 , < 5.14 (semver)
Linux	Linux	Affected: 5.14 Unaffected: 0 , < 5.14 (semver) Unaffected: 5.10.247 , ≤ 5.10.* (semver) Unaffected: 5.15.197 , ≤ 5.15.* (semver) Unaffected: 6.1.159 , ≤ 6.1.* (semver) Unaffected: 6.6.119 , ≤ 6.6.* (semver) Unaffected: 6.12.61 , ≤ 6.12.* (semver) Unaffected: 6.17.11 , ≤ 6.17.* (semver) Unaffected: 6.18 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/gadget/function/f_eem.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "a9985a88b2fc29fbe1657fe8518908e261d6889c",
              "status": "affected",
              "version": "3b545788505b2e2883aff13bdddeacaf88942a4f",
              "versionType": "git"
            },
            {
              "lessThan": "5a1628283cd9dccf1e44acfb74e77504f4dc7472",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "lessThan": "0ac07e476944a5e4c2b8b087dd167dec248c1bdf",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "lessThan": "41434488ca714ab15cb2a4d0378418d1be8052d2",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "lessThan": "e72c963177c708a167a7e17ed6c76320815157cf",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "lessThan": "0dea2e0069a7e9aa034696f8065945b7be6dd6b7",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "lessThan": "e4f5ce990818d37930cd9fb0be29eee0553c59d9",
              "status": "affected",
              "version": "4249d6fbc10fd997abdf8a1ea49c0389a0edf706",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "d55a236f1bab102e353ea5abb7b7b6ff7e847294",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "8e275d3d5915a8f7db3786e3f84534bb48245f4c",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "3680a6ff9a9ccd3c664663da04bef2534397d591",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "d654be97e1b679616e3337b871a9ec8f31a88841",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "8bdef7f21cb6e53c0ce3e1cbcb05975aa0dd0fe9",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "77d7f071883cf2921a7547f82e41f15f7f860e35",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "a55093941e38113dd6f5f5d5d2705fec3018f332",
              "versionType": "git"
            },
            {
              "lessThan": "5.10.247",
              "status": "affected",
              "version": "5.10.50",
              "versionType": "semver"
            },
            {
              "lessThan": "4.5",
              "status": "affected",
              "version": "4.4.276",
              "versionType": "semver"
            },
            {
              "lessThan": "4.10",
              "status": "affected",
              "version": "4.9.276",
              "versionType": "semver"
            },
            {
              "lessThan": "4.15",
              "status": "affected",
              "version": "4.14.240",
              "versionType": "semver"
            },
            {
              "lessThan": "4.20",
              "status": "affected",
              "version": "4.19.198",
              "versionType": "semver"
            },
            {
              "lessThan": "5.5",
              "status": "affected",
              "version": "5.4.132",
              "versionType": "semver"
            },
            {
              "lessThan": "5.13",
              "status": "affected",
              "version": "5.12.17",
              "versionType": "semver"
            },
            {
              "lessThan": "5.14",
              "status": "affected",
              "version": "5.13.2",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/gadget/function/f_eem.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.247",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.197",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.159",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.119",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.61",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.17.*",
              "status": "unaffected",
              "version": "6.17.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.18",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.247",
                  "versionStartIncluding": "5.10.50",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.197",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.159",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.119",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.61",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.17.11",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.18",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.4.276",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.9.276",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.14.240",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.19.198",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.4.132",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.12.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.13.2",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_eem: Fix memory leak in eem_unwrap\n\nThe existing code did not handle the failure case of usb_ep_queue in the\ncommand path, potentially leading to memory leaks.\n\nImprove error handling to free all allocated resources on usb_ep_queue\nfailure. This patch continues to use goto logic for error handling, as the\nexisting error handling is complex and not easily adaptable to auto-cleanup\nhelpers.\n\nkmemleak results:\n  unreferenced object 0xffffff895a512300 (size 240):\n    backtrace:\n      slab_post_alloc_hook+0xbc/0x3a4\n      kmem_cache_alloc+0x1b4/0x358\n      skb_clone+0x90/0xd8\n      eem_unwrap+0x1cc/0x36c\n  unreferenced object 0xffffff8a157f4000 (size 256):\n    backtrace:\n      slab_post_alloc_hook+0xbc/0x3a4\n      __kmem_cache_alloc_node+0x1b4/0x2dc\n      kmalloc_trace+0x48/0x140\n      dwc3_gadget_ep_alloc_request+0x58/0x11c\n      usb_ep_alloc_request+0x40/0xe4\n      eem_unwrap+0x204/0x36c\n  unreferenced object 0xffffff8aadbaac00 (size 128):\n    backtrace:\n      slab_post_alloc_hook+0xbc/0x3a4\n      __kmem_cache_alloc_node+0x1b4/0x2dc\n      __kmalloc+0x64/0x1a8\n      eem_unwrap+0x218/0x36c\n  unreferenced object 0xffffff89ccef3500 (size 64):\n    backtrace:\n      slab_post_alloc_hook+0xbc/0x3a4\n      __kmem_cache_alloc_node+0x1b4/0x2dc\n      kmalloc_trace+0x48/0x140\n      eem_unwrap+0x238/0x36c"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-23T16:02:32.799Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/a9985a88b2fc29fbe1657fe8518908e261d6889c"
        },
        {
          "url": "https://git.kernel.org/stable/c/5a1628283cd9dccf1e44acfb74e77504f4dc7472"
        },
        {
          "url": "https://git.kernel.org/stable/c/0ac07e476944a5e4c2b8b087dd167dec248c1bdf"
        },
        {
          "url": "https://git.kernel.org/stable/c/41434488ca714ab15cb2a4d0378418d1be8052d2"
        },
        {
          "url": "https://git.kernel.org/stable/c/e72c963177c708a167a7e17ed6c76320815157cf"
        },
        {
          "url": "https://git.kernel.org/stable/c/0dea2e0069a7e9aa034696f8065945b7be6dd6b7"
        },
        {
          "url": "https://git.kernel.org/stable/c/e4f5ce990818d37930cd9fb0be29eee0553c59d9"
        }
      ],
      "title": "usb: gadget: f_eem: Fix memory leak in eem_unwrap",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-68289",
    "datePublished": "2025-12-16T15:06:10.450Z",
    "dateReserved": "2025-12-16T14:48:05.292Z",
    "dateUpdated": "2026-05-23T16:02:32.799Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

FKIE_CVE-2025-68289

CVE-2025-68289 (GCVE-0-2025-68289)

Tags

Sightings

Nomenclature