Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: bpf: Skip scalar adjustment for BPF_NEG if dst is a pointer In check_alu_op(), the verifier currently calls check_reg_arg() and adjust_scalar_min_max_vals() unconditionally for BPF_NEG operations. However, if the destination register holds a pointer, these scalar adjustments are unnecessary and potentially incorrect. This patch adds a check to skip the adjustment logic when the destination register contains a pointer.
References
- https://git.kernel.org/stable/c/34904582b502a86fdb4d7984b12cacd2faabbe0d
- https://git.kernel.org/stable/c/b9ef4963227246b9222e1559ddeec8e7af63e6c6
FAQ
What is CVE-2025-40050?
CVE-2025-40050 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: bpf: Skip scalar adjustment for BPF_NEG if dst is a pointer In check_alu_op(), the verifier currently calls check_reg_arg() and ad...
How severe is CVE-2025-40050?
CVSS scoring is not yet available for CVE-2025-40050. Check NVD for updates.
Is there a patch for CVE-2025-40050?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.