Linux Kernel BPF Sockmap Vulnerability in TCP Message Handling

Vulnerability

A vulnerability in the Linux kernel's TCP BPF (Berkeley Packet Filter) message handling has been identified. This issue arises in the 'tcp_bpf_send_verdict' function, where the message size is not properly accounted for, leading to an incorrect charge of the message's socket buffer size. As a result, the 'sk_forward_alloc' allocation is not accurately updated, which can cause a warning related to stream queue management. The vulnerability is present in the BPF sockmap functionality of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to improper management of socket buffer allocations, potentially causing resource leaks or other unintended side effects in network communication.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel BPF Sockmap Vulnerability in TCP Message Handling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating