Linux Kernel BPF Vulnerability in Verifier State Management
CVE-2025-38060
What is CVE-2025-38060?
A vulnerability exists in the Linux kernel's BPF component, specifically in the management of verifier states. The issue arises from the incorrect handling of the 'loop_entry' field in the bpf_verifier_state structure during the state copying process in the copy_verifier_state() function. This flaw can lead to potential environmental state corruption, particularly affecting the env->cur_state and env->stack. The problem could allow a verifier to accept unsafe programs that should otherwise be rejected, raising serious security concerns. Proper verification processes must ensure that loop_entry fields from unrelated states do not contaminate the current state, enhancing the integrity and reliability of BPF program verification.
Affected Version(s)
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 46ba5757a7a4714e7d3f68cfe118208822cb3d78
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 8b4afd89fa75f738a80ca849126fd3cad77bcbf1
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2