{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-68351","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-12-16T14:48:05.300Z","datePublished":"2025-12-24T10:32:42.683Z","dateUpdated":"2026-05-11T21:51:31.310Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:51:31.310Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix refcount leak in exfat_find\n\nFix refcount leaks in `exfat_find` related to `exfat_get_dentry_set`.\n\nFunction `exfat_get_dentry_set` would increase the reference counter of\n`es->bh` on success. Therefore, `exfat_put_dentry_set` must be called\nafter `exfat_get_dentry_set` to ensure refcount consistency. This patch\nrelocate two checks to avoid possible leaks."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/exfat/namei.c"],"versions":[{"version":"92075758782c5edb4c67d0da9e47586a624c22f7","lessThan":"fc9ce762525e73438d31b613f18bca92a4d3d578","status":"affected","versionType":"git"},{"version":"13940cef95491472760ca261b6713692ece9b946","lessThan":"d009ff8959d28d2a33aeb96a5f7e7161c421d78f","status":"affected","versionType":"git"},{"version":"13940cef95491472760ca261b6713692ece9b946","lessThan":"9aee8de970f18c2aaaa348e3de86c38e2d956c1d","status":"affected","versionType":"git"},{"version":"0c8a1d2afd0dce0ea9257ab8c2271d8db6cb575d","status":"affected","versionType":"git"},{"version":"6c627bcc1896ba62ec793d0c00da74f3c93ce3ad","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/exfat/namei.c"],"versions":[{"version":"6.14","status":"affected"},{"version":"0","lessThan":"6.14","status":"unaffected","versionType":"semver"},{"version":"6.12.68","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.2","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"6.19","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.12.23","versionEndExcluding":"6.12.68"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.14","versionEndExcluding":"6.18.2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.14","versionEndExcluding":"6.19"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13.11"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.12.59"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/fc9ce762525e73438d31b613f18bca92a4d3d578"},{"url":"https://git.kernel.org/stable/c/d009ff8959d28d2a33aeb96a5f7e7161c421d78f"},{"url":"https://git.kernel.org/stable/c/9aee8de970f18c2aaaa348e3de86c38e2d956c1d"}],"title":"exfat: fix refcount leak in exfat_find","x_generator":{"engine":"bippy-1.2.0"}}}}