BPF Vulnerability in Linux Kernel Affects LoongArch Architecture

CVE-2025-37893

Summary

A vulnerability in the Linux kernel, specifically affecting the LoongArch architecture, has been identified concerning BPF programs utilizing tail calls. When executing these programs, a hard lockup occurs due to an off-by-one error in the JIT compilation process. This error arises from a mismatch in instruction generation during two compilation passes, leading to an incorrect epilogue offset. The fault results in jumping to unexpected instructions, causing system instability. The issue has been mitigated by introducing a nop instruction to correct the epilogue offset, enhancing the reliability of BPF operations on affected systems.

References