CVE-2025-68766:
Linux Debian vulnerability analysis and mitigation

In the Linux kernel, the following vulnerability has been resolved:

irqchip/mchp-eic: Fix error code in mchp_eic_domain_alloc()

If irq_domain_translate_twocell() sets "hwirq" to >= MCHP_EIC_NIRQ (2) then it results in an out of bounds access.

The code checks for invalid values, but doesn't set the error code. Return -EINVAL in that case, instead of returning success.

Source: NVD

Not a customer? See how Wiz maps CVEs like this one to real cloud attack paths.

Score

Published January 5, 2026

Severity HIGH

CNA Score N/A

Affected Technologies

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 8.8

Exploitation Probability (EPSS) N/A

Affected packages and libraries

Sources

NVD
Container-Optimized OS Release Notes
- Container-Optimized OS Has FixAdded at: Jan 15, 2026
Debian Security Tracker
- Debian 12 No FixAdded at: Jan 05, 2026
- Debian 13, 14 Has FixAdded at: Jan 05, 2026
Echo
- Echo Has FixAdded at: Jan 05, 2026
Ubuntu Security Tracker
- Ubuntu 16.04, 18.04, 20.04 Severity MEDIUMNo FixAdded at: Jan 06, 2026
- Ubuntu 22.04, 24.04, 25.10 Severity MEDIUMNo FixAdded at: Jan 07, 2026

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-33230	HIGH	7.3	Linux Debian	nvidia-cuda-toolkit	No	No	Jan 20, 2026
CVE-2025-33229	HIGH	7.3	Linux Debian	nvidia-cuda-toolkit	No	No	Jan 20, 2026
CVE-2025-33228	HIGH	7.3	Linux Debian	nvidia-cuda-toolkit	No	No	Jan 20, 2026
CVE-2025-33231	MEDIUM	6.7	Linux Debian	nvidia-cuda-toolkit	No	No	Jan 20, 2026
CVE-2025-15281	N/A	N/A	Wolfi	glibc-langpack-anp	No	Yes	Jan 20, 2026