BPF Helper Function Vulnerability in Linux Kernel by The Linux Foundation
CVE-2025-39990

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 15 October 2025

What is CVE-2025-39990?

A vulnerability has been identified in the Linux kernel related to the BPF helper function, specifically in its validation process. The issue arises when the helper function pointer may be NULL due to a disabled configuration option. The kernel's verifier reported a bug where this lack of validation could lead to unintended behavior. The implementation has been refined to check the helper function directly in 'get_helper_proto' and to mark the tail_call helper function with 'BPF_PTR_POISON' to prevent misuse, as it is deliberately not used.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3d429cb1278e995e22995ef117fa96d223a67e93

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 6233715b4b714068d6c831d214a4e8792109875a

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/3d429cb1278e995e22995ef11...

https://git.kernel.org/stable/c/6233715b4b714068d6c831d21...

https://git.kernel.org/stable/c/e4414b01c1cd9887bbde92f94...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 15, 2025
Vulnerability Reserved
Apr 16, 2025

JSON