CVE-2025-40050

NONE EPSS 10.2%
Published Oct 28, 20258mo ago · Modified Jun 17, 20261w ago
Find Similar
Published Oct 28, 2025 8mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Skip scalar adjustment for BPF_NEG if dst is a pointer In check_alu_op(), the verifier currently calls check_reg_arg() and adjust_scalar_min_max_vals() unconditionally for BPF_NEG operations. However, if the destination register holds a pointer, these scalar adjustments are unnecessary and potentially incorrect. This patch adds a check to skip the adjustment logic when the destination register contains a pointer.

Threat Intelligence

EPSS Exploit Probability
10.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 2

  • git.kernel.org https://git.kernel.org/stable/c/34904582b502a86fdb4d7984b12cacd2faabbe0d
  • git.kernel.org https://git.kernel.org/stable/c/b9ef4963227246b9222e1559ddeec8e7af63e6c6

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.