CVE-2025-22087

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to an array bounds error with may goto in the Linux kernel's BPF (Berkeley Packet Filter) functionality. The may goto function uses additional stack space, causing the interpreters[] array to go out of bounds when calculating the index by stack size. This can lead to potential issues when loading BPF programs. The problem is addressed by re-evaluating the stack size for rewritten BPF programs and handling non-JIT cases by rejecting direct loading or warning about potential out-of-bounds array access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.