From 8fa77a31f881a22e246add5dabedeab1c1ee2f86 Mon Sep 17 00:00:00 2001
From: Oracle Linux CVE analysis bot <ora-linux-cve-analysis_mb@oracle.com>
Date: Fri, 3 Apr 2026 15:48:55 +0100
Subject: [PATCH] Analysis for CVE-2025-68292.yml

---
 vulns/CVE-2025-68292.yml | 10 ++++++++++
 1 file changed, 10 insertions(+)
 create mode 100644 vulns/CVE-2025-68292.yml

diff --git a/vulns/CVE-2025-68292.yml b/vulns/CVE-2025-68292.yml
new file mode 100644
index 0000000..93047c3
--- /dev/null
+++ b/vulns/CVE-2025-68292.yml
@@ -0,0 +1,10 @@
+reachability: local
+memory_corruption: false
+bug_class: Uninitialized memory read
+impact: Info leak
+privileges_required: false
+notes: |2-
+   Kernel exposes un-zeroed hugetlb pages placed in page cache, user can then
+  mmap/read to leak kernel memory.
+author: Oracle Corporation
+version: v0.1