cve 2025 68289

CVE-2025-68289 is a Linux kernel vulnerability in the USB gadget Ethernet Emulation Model (f_eem) function, specifically a memory leak in the eem_unwrap routine. The fix addresses a resource-management issue where a usb_ep_queue failure could leave allocated memory unfreed, potentially leading to resource exhaustion over time. This vulnerability affects Linux kernels used on embedded systems, development boards, and virtualized environments that rely on USB gadget drivers for device-side peripheral support. The patch hardens the error path to ensure all resources are properly released, closing a small but operationally important hole. Users should apply the latest kernel updates to mitigate this issue.