CVE-2025-37822

HIGH EPSS 10.4%
Published May 8, 20251y ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
High
Find Similar
Published May 8, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: riscv: uprobes: Add missing fence.i after building the XOL buffer The XOL (execute out-of-line) buffer is used to single-step the replaced instruction(s) for uprobes. The RISC-V port was missing a proper fence.i (i$ flushing) after constructing the XOL buffer, which can result in incorrect execution of stale/broken instructions. This was found running the BPF selftests "test_progs: uprobe_autoattach, attach_probe" on the Spacemit K1/X60, where the uprobes tests randomly blew up.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
10.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 5

VendorProductVersionRange
linuxlinux_kernel*≥5.12  –  <6.12.26
linuxlinux_kernel*≥6.13  –  <6.14.5
linuxlinux_kernel6.15any
linuxlinux_kernel6.15any
linuxlinux_kernel6.15any

References 6

  • git.kernel.org https://git.kernel.org/stable/c/1dbb95a36499374c51b47ee8ae258a8862c20978
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/77c956152a3a7c7a18b68f3654f70565b2181d03
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7d1d19a11cfbfd8bae1d89cc010b2cc397cd0c48
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b6d8d4d01ca8514fa89b05355f296758a91e2297
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bcf6d3158c5902d92b6d62335af4422b7bf7c4e2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/be6d98766ac952d38241d5a5b213f363afa421c3
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/1dbb95a36499374c51b47ee8ae258a8862c20978
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/77c956152a3a7c7a18b68f3654f70565b2181d03
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7d1d19a11cfbfd8bae1d89cc010b2cc397cd0c48
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b6d8d4d01ca8514fa89b05355f296758a91e2297
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bcf6d3158c5902d92b6d62335af4422b7bf7c4e2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/be6d98766ac952d38241d5a5b213f363afa421c3
    Patch