CVE-2025-68352

🗓️ 24 Dec 2025 10:32:43Reported by LinuxType

Linux kernel fixes spi ch341 out-of-bounds access in ch341_transfer_one by copying len minus one.

Reporter	Title	Published	Views	Family All 107
AstraLinux	Astra Linux - уязвимость в linux-5.10	20 May 202605:53	–	astralinux
Circl	CVE-2025-68352	2 Apr 202617:00	–	circl
CNNVD	Linux kernel 安全漏洞	24 Dec 202500:00	–	cnnvd
Cvelist	CVE-2025-68352 spi: ch341: fix out-of-bounds memory access in ch341_transfer_one	24 Dec 202510:32	–	cvelist
Debian CVE	CVE-2025-68352	24 Dec 202510:32	–	debiancve
EUVD	EUVD-2025-205102	24 Dec 202512:30	–	euvd
NVD	CVE-2025-68352	24 Dec 202511:15	–	nvd
Tenable Nessus	openSUSE 16 Security Update : kernel (openSUSE-SU-2026:20145-1)	4 Feb 202600:00	–	nessus
Tenable Nessus	SUSE SLES16 Security Update : kernel (SUSE-SU-2026:20220-1)	6 Feb 202600:00	–	nessus
Tenable Nessus	SUSE SLES16 Security Update : kernel (SUSE-SU-2026:20228-1)	6 Feb 202600:00	–	nessus

Vulners

CNA

Node

linux linux_kernelRange6.11–6.12.63

linux linux_kernelRange6.13.0–6.17.13

linux linux_kernelRange6.18.0–6.18.2

linux linux_kernelRange6.19.0≥

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/spi/spi-ch341.c"
    ],
    "versions": [
      {
        "version": "8846739f52afa07e63395c80227dc544f54bd7b1",
        "lessThan": "cad6c0fd6f3c0e76a1f75df4bce3b08a13f08974",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "8846739f52afa07e63395c80227dc544f54bd7b1",
        "lessThan": "ea1e43966cd03098fcd5f0d72e6c2901d45fa08d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "8846739f52afa07e63395c80227dc544f54bd7b1",
        "lessThan": "81841da1f30f66a850cc8796d99ba330aad9d696",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "8846739f52afa07e63395c80227dc544f54bd7b1",
        "lessThan": "545d1287e40a55242f6ab68bcc1ba3b74088b1bc",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/spi/spi-ch341.c"
    ],
    "versions": [
      {
        "version": "6.11",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.11",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.63",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.17.13",
        "lessThanOrEqual": "6.17.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.2",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.19",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/545d1287e40a55242f6ab68bcc1ba3b74088b1bc
git	www.git.kernel.org/stable/c/ea1e43966cd03098fcd5f0d72e6c2901d45fa08d
git	www.git.kernel.org/stable/c/81841da1f30f66a850cc8796d99ba330aad9d696
git	www.git.kernel.org/stable/c/cad6c0fd6f3c0e76a1f75df4bce3b08a13f08974

11 May 2026 21:51Current

6.4Medium risk

Vulners AI Score6.4

EPSS0.0002