Unrated severityNVD Advisory· Published Oct 15, 2025· Updated Apr 15, 2026
CVE-2025-39990
CVE-2025-39990
Description
In the Linux kernel, the following vulnerability has been resolved:
bpf: Check the helper function is valid in get_helper_proto
kernel test robot reported verifier bug [1] where the helper func pointer could be NULL due to disabled config option.
As Alexei suggested we could check on that in get_helper_proto directly. Marking tail_call helper func with BPF_PTR_POISON, because it is unused by design.
[1] https://lore.kernel.org/oe-lkp/202507160818.68358831-lkp@intel.com
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
38- osv-coords37 versionspkg:linux/kernelpkg:rpm/opensuse/dtb-aarch64&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-64kb&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-zfcpdump&distro=openSUSE%20Leap%2016.0pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2016.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-obs-qa&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-obs-qa&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
>= 5.8.0, < 6.12.50+ 36 more
- (no CPE)range: >= 5.8.0, < 6.12.50
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1.160000.2.5
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1.160000.2.5
- (no CPE)range: < 6.12.0-160000.8.1.160000.2.5
- (no CPE)range: < 6.12.0-160000.8.1.160000.2.5
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
- (no CPE)range: < 6.12.0-160000.8.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.