CVE-2025-68791
Description
In the Linux kernel, the following vulnerability has been resolved:
fuse: missing copy_finish in fuse-over-io-uring argument copies
Fix a possible reference count leak of payload pages during fuse argument copies.
[Joanne: simplified error cleanup]
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A reference count leak of payload pages in Linux kernel's fuse-over-io-uring argument copies could lead to memory exhaustion.
Vulnerability
In the Linux kernel, the FUSE filesystem's support for io_uring (fuse-over-io-uring) contains a missing copy_finish call during argument copies. This omission causes a reference count leak of payload pages, meaning pages are not properly released after use.
Exploitation
An attacker with the ability to trigger fuse-over-io-uring operations—typically a local user with access to FUSE mounts—can repeatedly invoke these operations to exhaust kernel memory. No special privileges beyond FUSE access are required.
Impact
The reference count leak leads to a gradual depletion of available memory pages, potentially causing system instability or denial of service. The issue is classified as a memory leak vulnerability.
Mitigation
The fix was committed to the Linux kernel stable tree in commit 6e0d7f7f4a43 [1]. Users should apply the latest kernel updates to resolve the issue.
AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.