CVE-2025-68773 | spi: fsl-cpm: Check length parity before switching to 16 bit mode

In the Linux kernel, the following vulnerability has been resolved: spi: fsl-cpm: Check length parity before switching to 16 bit mode Commit fc96ec826bce ("spi: fsl-cpm: Use 16 bit mode for large transfers with even size") failed to make sure that the size is really even before switching to 16 bit mode. Until recently the problem went unnoticed because kernfs uses a pre-allocated bounce buffer of size PAGE_SIZE for reading EEPROM. But commit 8ad6249c51d0 ("eeprom: at25: convert to spi-mem API") introduced an additional dynamically allocated bounce buffer whose size is exactly the size of the transfer, leading to a buffer overrun in the fsl-cpm driver when that size is odd. Add the missing length parity verification and remain in 8 bit mode when the length is not even.

Published: 2026-01-13 Last update: 2026-04-15 Assigner: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

NVD Status：Deferred，CVE State: published

View at NVD, CVE.org, EUVD

Conclusion & alert: CVE-2025-68773 is rated Low Risk (17.3/100): low exploitation likelihood (EPSS 0.06%). Mandatory action: Low composite risk—no urgent action required; patch on your normal maintenance cycle and revisit priority if CVSS or EPSS increases.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2025-68773

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-02-10	0.02%	0.06%	+0.04%
2	2026-01-14	—	0.02%	—

Full EPSS history (2 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2025-68773

CVSS metrics for this CVE.

No CVSS data in dataset for this CVE.

Weakness enumeration for CVE-2025-68773

OS Trackers for CVE-2025-68773

vendor	priority	summary	link
`debian`	not yet assigned	CVE-2025-68773 not yet assigned priority: Debian including 2 source packages (linux, linux-6.1), 6 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 6.	https://security-tracker.debian.org/tracker/CVE-2025-68773
`redhat`	—	—	https://access.redhat.com/security/cve/CVE-2025-68773
`suse`	medium	CVE-2025-68773 severity moderate: SUSE including 388 source package names (13.2-9.1:libsqlite3-0-3.49.1-1.1, 2.1.3-6.115:kernel-default-base-6.4.0-39.1.21.16, …), 674 product×package rows across 86 product lines (Container suse/sl-micro/6.0/baremetal-os-container, Container suse/sl-micro/6.0/base-os-container, … (86 product lines)): Fixed 277, Known Affected 231, Known Not Affected 141, First Fixed 25.	https://www.suse.com/security/cve/CVE-2025-68773/
`ubuntu`	medium	CVE-2025-68773 medium priority: Ubuntu including 157 source packages (linux, linux-allwinner-5.19, …), 1562 status rows across 10 suites (bionic, focal, jammy, noble, plucky, questing, resolute, trusty, upstream, xenial): DNE 1157, ignored 179, released 119, not-affected 89, pending 11, needed 7.	https://ubuntu.com/security/CVE-2025-68773

Affected software / configurations for CVE-2025-68773

Vendor	Product	Version	Raw CPE
No affected products in dataset.

References for CVE-2025-68773

URL	Tags
https://git.kernel.org/stable/c/1417927df8049a0194933861e9b098669a95c762
https://git.kernel.org/stable/c/3dd6d01384823e1bd8602873153d6fc4337ac4fe
https://git.kernel.org/stable/c/743cebcbd1b2609ec5057ab474979cef73d1b681
https://git.kernel.org/stable/c/837a23a11e0f734f096c7c7b0778d0e625e3dc87
https://git.kernel.org/stable/c/9c34a4a2ead00979d203a8c16bea87f0ef5291d8
https://git.kernel.org/stable/c/be0b613198e6bfa104ad520397cab82ad3ec1771
https://git.kernel.org/stable/c/c8f1d35076b78df61ace737e41cc1f4b7b63236c

cvelogic Threat Intelligence