CVE-2025-37963

Description

In the Linux kernel, the following vulnerability has been resolved: arm64: bpf: Only mitigate cBPF programs loaded by unprivileged users Support for eBPF programs loaded by unprivileged users is typically disabled. This means only cBPF programs need to be mitigated for BHB. In addition, only mitigate cBPF programs that were loaded by an unprivileged user. Privileged users can also load the same program via eBPF, making the mitigation pointless.

Reserved 2025-04-16 | Published 2025-05-20 | Updated 2025-05-26 | Assigner Linux

Product status

Default status
unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 6e52d043f7dbf1839a24a3fab2b12b0d3839de7a
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 80251f62028f1ab2e09be5ca3123f84e8b00389a
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before e5f5100f1c64ac6c72671b2cf6b46542fce93706
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 477481c4348268136227348984b6699d6370b685
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before f300769ead032513a68e4a02e806393402e626f8
affected

Default status
affected

6.1.139
unaffected

6.6.91
unaffected

6.12.29
unaffected

6.14.7
unaffected

6.15
unaffected

References

git.kernel.org/...c/6e52d043f7dbf1839a24a3fab2b12b0d3839de7a

git.kernel.org/...c/80251f62028f1ab2e09be5ca3123f84e8b00389a

git.kernel.org/...c/e5f5100f1c64ac6c72671b2cf6b46542fce93706

git.kernel.org/...c/477481c4348268136227348984b6699d6370b685

git.kernel.org/...c/f300769ead032513a68e4a02e806393402e626f8

cve.org (CVE-2025-37963)

nvd.nist.gov (CVE-2025-37963)

Download JSON