Linux Kernel BPF Processor ID Function Vulnerability in Non-SMP Configurations

Vulnerability

A vulnerability in the Linux kernel's BPF (Berkeley Packet Filter) subsystem has been addressed. The issue arose on x86-64 architectures when calling the function 'bpf_get_smp_processor_id()' in a kernel with 'CONFIG_SMP' disabled. This situation can lead to a page fault error because 'pcpu_hot' is unavailable, causing a supervisor read access violation in kernel mode. The vulnerability has been fixed by modifying the function to return 0 when 'CONFIG_SMP' is not enabled.

Impact

The vulnerability could cause a kernel panic by triggering a page fault error, disrupting normal system operations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel BPF Processor ID Function Vulnerability in Non-SMP Configurations

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating