CVE-2025-39886

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw related to memory management within the bpf (Berkeley Packet Filter) subsystem. Specifically, the issue arises from calling bpf map kmalloc node() from bpf async init(), potentially leading to locking issues and hardlockups. This can occur when bpf timer init() is called within a BPF program while memory accounting raises a MEMCG MAX event. The problem is addressed by using GFP HIGH instead of GFP ATOMIC in bpf async init(), ensuring that cgroup file notify() is not called when spinning is disallowed during a MEMCG MAX event. The issue was reproduced on bpf-next (b338cf849ec8) by modifying a sample BPF program and adjusting memcg accounting code. Similar variants involving double-acquiring different locks have also been observed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.