Unrated severityNVD Advisory· Published Dec 16, 2025· Updated Apr 15, 2026
CVE-2025-68234
CVE-2025-68234
Description
In the Linux kernel, the following vulnerability has been resolved:
io_uring/cmd_net: fix wrong argument types for skb_queue_splice()
If timestamp retriving needs to be retried and the local list of SKB's already has entries, then it's spliced back into the socket queue. However, the arguments for the splice helper are transposed, causing exactly the wrong direction of splicing into the on-stack list. Fix that up.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10- osv-coords9 versionspkg:linux/kernelpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_78&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5
>= 6.17.0, < 6.17.10+ 8 more
- (no CPE)range: >= 6.17.0, < 6.17.10
- (no CPE)range: < 4.12.14-122.296.1
- (no CPE)range: < 4.12.14-122.296.1
- (no CPE)range: < 4.12.14-122.296.1
- (no CPE)range: < 4.12.14-122.296.1
- (no CPE)range: < 4.12.14-122.296.1
- (no CPE)range: < 4.12.14-122.296.1
- (no CPE)range: < 4.12.14-122.296.1
- (no CPE)range: < 1-8.3.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.