CVE-2025-22046
MEDIUM EPSS 6.1%
Published Apr 16, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Published Apr 16, 2025 1y ago
Last Modified Jun 17, 2026 2w ago
Description
In the Linux kernel, the following vulnerability has been resolved: uprobes/x86: Harden uretprobe syscall trampoline check Jann reported a possible issue when trampoline_check_ip returns address near the bottom of the address space that is allowed to call into the syscall if uretprobes are not set up: https://lore.kernel.org/bpf/202502081235.5A6F352985@keescook/T/#m9d416df341b8fbc11737dacbcd29f0054413cbbf Though the mmap minimum address restrictions will typically prevent creating mappings there, let's make sure uretprobe syscall checks for that.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
6.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 3
References 4
- git.kernel.org https://git.kernel.org/stable/c/b0065d712049c87e1994c6eac00c6a637e39b325
- git.kernel.org https://git.kernel.org/stable/c/c35771342e47d58ab9433f3be1c3c30f2c5fa4f3
- git.kernel.org https://git.kernel.org/stable/c/d4e48b8d59fe162938a5004ace698c847e6a3207
- git.kernel.org https://git.kernel.org/stable/c/fa6192adc32f4fdfe5b74edd5b210e12afd6ecc0
Remediation
- git.kernel.org https://git.kernel.org/stable/c/b0065d712049c87e1994c6eac00c6a637e39b325
- git.kernel.org https://git.kernel.org/stable/c/c35771342e47d58ab9433f3be1c3c30f2c5fa4f3
- git.kernel.org https://git.kernel.org/stable/c/d4e48b8d59fe162938a5004ace698c847e6a3207
- git.kernel.org https://git.kernel.org/stable/c/fa6192adc32f4fdfe5b74edd5b210e12afd6ecc0