What is the severity of CVE-2025-21668?

CVE-2025-21668 is classified as a high severity vulnerability due to the potential for out-of-bounds exceptions.

How do I fix CVE-2025-21668?

To fix CVE-2025-21668, ensure that you update to the latest patched version of the Linux kernel.

Which systems are affected by CVE-2025-21668?

CVE-2025-21668 affects systems running vulnerable versions of the Linux kernel, particularly those using the imx8mp_blk_ctrl component.

What type of vulnerability is CVE-2025-21668?

CVE-2025-21668 is a logic error vulnerability caused by a missing loop break condition in the Linux kernel.

Is there a known exploitation of CVE-2025-21668?

As of now, there are no public reports of active exploitation of CVE-2025-21668.

Vulnerability/
CVE-2025-21668

31/1/2025

CVE-2025-21668

First published: Fri Jan 31 2025(Updated: )

In the Linux kernel, the following vulnerability has been resolved: pmdomain: imx8mp-blk-ctrl: add missing loop break condition Currently imx8mp_blk_ctrl_remove() will continue the for loop until an out-of-bounds exception occurs. pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : dev_pm_domain_detach+0x8/0x48 lr : imx8mp_blk_ctrl_shutdown+0x58/0x90 sp : ffffffc084f8bbf0 x29: ffffffc084f8bbf0 x28: ffffff80daf32ac0 x27: 0000000000000000 x26: ffffffc081658d78 x25: 0000000000000001 x24: ffffffc08201b028 x23: ffffff80d0db9490 x22: ffffffc082340a78 x21: 00000000000005b0 x20: ffffff80d19bc180 x19: 000000000000000a x18: ffffffffffffffff x17: ffffffc080a39e08 x16: ffffffc080a39c98 x15: 4f435f464f006c72 x14: 0000000000000004 x13: ffffff80d0172110 x12: 0000000000000000 x11: ffffff80d0537740 x10: ffffff80d05376c0 x9 : ffffffc0808ed2d8 x8 : ffffffc084f8bab0 x7 : 0000000000000000 x6 : 0000000000000000 x5 : ffffff80d19b9420 x4 : fffffffe03466e60 x3 : 0000000080800077 x2 : 0000000000000000 x1 : 0000000000000001 x0 : 0000000000000000 Call trace: dev_pm_domain_detach+0x8/0x48 platform_shutdown+0x2c/0x48 device_shutdown+0x158/0x268 kernel_restart_prepare+0x40/0x58 kernel_kexec+0x58/0xe8 __do_sys_reboot+0x198/0x258 __arm64_sys_reboot+0x2c/0x40 invoke_syscall+0x5c/0x138 el0_svc_common.constprop.0+0x48/0xf0 do_el0_svc+0x24/0x38 el0_svc+0x38/0xc8 el0t_64_sync_handler+0x120/0x130 el0t_64_sync+0x190/0x198 Code: 8128c2d0 ffffffc0 aa1e03e9 d503201f

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux kernel

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2025-21668?
CVE-2025-21668 is classified as a high severity vulnerability due to the potential for out-of-bounds exceptions.
How do I fix CVE-2025-21668?
To fix CVE-2025-21668, ensure that you update to the latest patched version of the Linux kernel.
Which systems are affected by CVE-2025-21668?
CVE-2025-21668 affects systems running vulnerable versions of the Linux kernel, particularly those using the imx8mp_blk_ctrl component.
What type of vulnerability is CVE-2025-21668?
CVE-2025-21668 is a logic error vulnerability caused by a missing loop break condition in the Linux kernel.
Is there a known exploitation of CVE-2025-21668?
As of now, there are no public reports of active exploitation of CVE-2025-21668.

collector/nvd-api
source/NVD
agent/first-publish-date
agent/type
agent/description
agent/last-modified-date
agent/references
agent/author
agent/source
agent/event
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
vendor/linux
canonical/linux kernel