CVE-2025-37948

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-37948

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37948.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-37948

Downstream

BELL-CVE-2025-37948

DEBIAN-CVE-2025-37948

DLA-4271-1

DLA-4327-1

DSA-5925-1

ECHO-faec-1cc5-a629

MGASA-2025-0182

MGASA-2025-0183

OESA-2025-1729

OESA-2025-1730

OESA-2025-1870

ROOT-OS-DEBIAN-11-CVE-2025-37948

ROOT-OS-DEBIAN-12-CVE-2025-37948

ROOT-OS-UBUNTU-2204-CVE-2025-37948

ROOT-OS-UBUNTU-2404-CVE-2025-37948

SUSE-SU-2025:01918-1

SUSE-SU-2025:01964-1

SUSE-SU-2025:01965-1

SUSE-SU-2025:01983-1

SUSE-SU-2025:02000-1

SUSE-SU-2025:02254-1

SUSE-SU-2025:02262-1

SUSE-SU-2025:02264-1

SUSE-SU-2025:02307-1

SUSE-SU-2025:02321-1

SUSE-SU-2025:02333-1

SUSE-SU-2025:02923-1

SUSE-SU-2025:20408-1

SUSE-SU-2025:20413-1

SUSE-SU-2025:20419-1

SUSE-SU-2025:20421-1

SUSE-SU-2025:2264-1

Related

Published

2025-05-20T16:01:44.452Z

Modified

2026-06-18T03:55:45.957408031Z

Summary

arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs

Details

In the Linux kernel, the following vulnerability has been resolved:

arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs

A malicious BPF program may manipulate the branch history to influence what the hardware speculates will happen next.

On exit from a BPF program, emit the BHB mititgation sequence.

This is only applied for 'classic' cBPF programs that are loaded by seccomp.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/37xxx/CVE-2025-37948.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

0be7320a635c2e434e8b67e0e9474a85ceb421c4

Fixed

c6a8735d841bcb7649734bb3a787bb174c67c0d8

Fixed

993f63239c219696aef8887a4e7d3a16bf5a8ece

Fixed

8fe5c37b0e08a97cf0210bb75970e945aaaeebab

Fixed

42a20cf51011788f04cf2adbcd7681f02bdb6c27

Fixed

38c345fd54afd9d6ed8d3fcddf3f6ea23887bf78

Fixed

852b8ae934b5cbdc62496fa56ce9969aa2edda7f

Fixed

0dfefc2ea2f29ced2416017d7e5b1253a54c2735

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37948.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.7.0

Fixed

5.10.239

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.186

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.139

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.91

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.29

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.14.7

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37948.json"