CVE-2025-68763 – crypto: starfive – Correctly handle return of sg_nents_for_len

CVE ID : CVE-2025-68763

Published : Jan. 5, 2026, 9:32 a.m. | 53 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

crypto: starfive – Correctly handle return of sg_nents_for_len

The return value of sg_nents_for_len was assigned to an unsigned long
in starfive_hash_digest, causing negative error codes to be converted
to large positive integers.

Add error checking for sg_nents_for_len and return immediately on
failure to prevent potential buffer overflows.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…