Verifier Bug in Linux Kernel Affecting BPF Functionality
CVE-2025-40143
Currently unrated
What is CVE-2025-40143?
A vulnerability in the Linux kernel has revealed a flaw in the BPF (Berkeley Packet Filter) functionality related to speculative execution paths. The code erroneously assumes that a struct bpf_scc_visit instance should be allocated for certain paths during verification processes. However, this assumption holds only for non-speculative paths. This results in a verifier bug being reported under specific conditions. A patch has been introduced to address this issue, ensuring improved reliability in the handling of BPF verification and execution paths.
Affected Version(s)
Linux c9e31900b54cadf5398dfb838c0a63effa1defec < 3861e7c4324aa20a632fb74eb3904114f6afdb57
Linux c9e31900b54cadf5398dfb838c0a63effa1defec
Linux 6.17