Race Condition in Linux Kernel's BPF Ring Buffer Implementation
CVE-2025-40319

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 December 2025

What is CVE-2025-40319?

A race condition exists in the Linux kernel's BPF ring buffer where an irq_work can be queued in bpf_ringbuf_commit(), but the ring buffer may be freed before the work executes. This situation can lead to potential memory access violations as the irq_work thread could attempt to access memory that has already been freed. The issue is resolved by ensuring all pending irq_work is completed before the buffer is freed, thus maintaining system stability and preventing unexpected behaviors.

Affected Version(s)

Linux 457f44363a8894135c85b7a9afd2bd8196db24ab < 47626748a2a00068dbbd5836d19076637b4e235b

Linux 457f44363a8894135c85b7a9afd2bd8196db24ab

References

https://git.kernel.org/stable/c/47626748a2a00068dbbd5836d...

https://git.kernel.org/stable/c/de2ce6b14bc3e565708a39bdb...

https://git.kernel.org/stable/c/e1828c7a8d8135e21ff6adaaa...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
Apr 16, 2025

JSON