CVE-2025-37948

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-37948
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37948.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-37948
Downstream
Related
Published
2025-05-20T16:15:32Z
Modified
2025-08-13T00:00:20Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs

A malicious BPF program may manipulate the branch history to influence what the hardware speculates will happen next.

On exit from a BPF program, emit the BHB mititgation sequence.

This is only applied for 'classic' cBPF programs that are loaded by seccomp.

References

Affected packages