VYPR
Unrated severityNVD Advisory· Published May 20, 2025· Updated Dec 20, 2025

arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs

CVE-2025-37948

Description

In the Linux kernel, the following vulnerability has been resolved:

arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs

A malicious BPF program may manipulate the branch history to influence what the hardware speculates will happen next.

On exit from a BPF program, emit the BHB mititgation sequence.

This is only applied for 'classic' cBPF programs that are loaded by seccomp.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

171

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.