CVE-2025-37948

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-37948
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-37948.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-37948
Downstream
Related
Published
2025-05-20T16:15:32Z
Modified
2025-08-13T00:01:39Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs

A malicious BPF program may manipulate the branch history to influence what the hardware speculates will happen next.

On exit from a BPF program, emit the BHB mititgation sequence.

This is only applied for 'classic' cBPF programs that are loaded by seccomp.

References

Affected packages