Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stackmap overflow check in __bpf_get_stackid() Syzkaller reported a KASAN slab-out-of-bounds write in __bpf_get_stackid() when copying stack trace data. The issue occurs when the perf trace contains more stack entries than the stack map bucket can hold, leading to an out-of-bounds write in the bucket's data array.
References
- https://git.kernel.org/stable/c/23f852daa4bab4d579110e034e4d513f7d490846
- https://git.kernel.org/stable/c/2a008f6de163279deffd488c1deab081bce5667c
- https://git.kernel.org/stable/c/4669a8db976c8cbd5427fe9945f12c5fa5168ff3
- https://git.kernel.org/stable/c/d1f424a77b6bd27b361737ed73df49a0158f1590
FAQ
What is CVE-2025-68378?
CVE-2025-68378 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stackmap overflow check in __bpf_get_stackid() Syzkaller reported a KASAN slab-out-of-bounds write in __bpf_get_stackid()...
How severe is CVE-2025-68378?
CVSS scoring is not yet available for CVE-2025-68378. Check NVD for updates.
Is there a patch for CVE-2025-68378?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.