- CVE ID
- CVE-2025-68177
- CWE
- N/A
- CVE Description
- In the Linux kernel, the following vulnerability has been resolved:
cpufreq/longhaul: handle NULL policy in longhaul_exit
longhaul_exit() was calling cpufreq_cpu_get(0) without checking
for a NULL policy pointer. On some systems, this could lead to a
NULL dereference and a kernel warning or panic.
This patch adds a check using unlikely() and returns early if the
policy is NULL.
Bugzilla: #219962
- Published
- Dec 17, 2025
- CVSS Score & Severity
6.9Medium
- CVSS Vector
- CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
- EPSS Score
- 0.053%
- KEV Status
Not in KEV Catalog: No known exploits
- Source
- National Vulnerability Database
