A logic bug in the Linux kernel’s Kvaser USB CAN driver has been fixed after being assigned CVE-2025-68308—a subtle off-by-one handling error in the command parsers that could cause an infinite parsing loop and result in a local denial-of-service on systems that interact with affected Kvaser USB...
