Linux Kernel Vulnerability in uprobes Mechanism

CVE-2025-38466

What is CVE-2025-38466?

A vulnerability exists in the Linux kernel's uprobes mechanism, allowing potential destructive actions during instruction execution. The kernel currently validates that an instruction exists at a specified offset but fails to determine whether this instruction is valid as perceived by the execution stream due to the varying lengths of instructions. This scenario is exacerbated on architectures like arm64, where data mingling with instructions can lead to vulnerabilities. To mitigate this risk, the kernel now necessitates CAP_SYS_ADMIN privileges for the use of uprobes, reinforcing system integrity and security.

References