CVE-2025-40319

NONE EPSS 5.7%
Published Dec 8, 20256mo ago · Modified Jun 17, 20261w ago
Find Similar
Published Dec 8, 2025 6mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Sync pending IRQ work before freeing ring buffer Fix a race where irq_work can be queued in bpf_ringbuf_commit() but the ring buffer is freed before the work executes. In the syzbot reproducer, a BPF program attached to sched_switch triggers bpf_ringbuf_commit(), queuing an irq_work. If the ring buffer is freed before this work executes, the irq_work thread may accesses freed memory. Calling `irq_work_sync(&rb->work)` ensures that all pending irq_work complete before freeing the buffer.

Threat Intelligence

EPSS Exploit Probability
5.7% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 7

  • git.kernel.org https://git.kernel.org/stable/c/10ca3b2eec384628bc9f5d8190aed9427ad2dde6
  • git.kernel.org https://git.kernel.org/stable/c/430e15544f11f8de26b2b5109c7152f71b78295e
  • git.kernel.org https://git.kernel.org/stable/c/47626748a2a00068dbbd5836d19076637b4e235b
  • git.kernel.org https://git.kernel.org/stable/c/4e9077638301816a7d73fa1e1b4c1db4a7e3b59c
  • git.kernel.org https://git.kernel.org/stable/c/6451141103547f4efd774e912418a3b4318046c6
  • git.kernel.org https://git.kernel.org/stable/c/de2ce6b14bc3e565708a39bdba3ef9162aeffc72
  • git.kernel.org https://git.kernel.org/stable/c/e1828c7a8d8135e21ff6adaaa9458c32aae13b11

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.