CVE-2025-40169

CVSS v2.0

5.0

Medium

Vector

AV:L/AC:H/Au:S/C:P/I:P/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's BPF (Berkeley Packet Filter) program verification process. Specifically, the check alu op() function inadequately validates the 'offset' field within ALU (Arithmetic Logic Unit) instructions. The initial check allowed negative offset values due to the signed nature of the insn->off variable, potentially leading to the acceptance of malformed BPF programs. The validation has been improved by changing the condition to explicitly reject any value other than 0 or 1 for the offset. This strengthens the verifier against potentially harmful BPF programs.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2026-02386

CVE-2025-40169

OESA-2025-2765

OESA-2025-2766

OESA-2025-2767

OPENSUSE-SU-2025:20172-1

SUSE-SU-2025:4393-1

SUSE-SU-2025:4422-1

SUSE-SU-2025:4505-1

SUSE-SU-2025:4516-1

SUSE-SU-2025:4517-1

SUSE-SU-2025:4521-1

SUSE-SU-2026:20012-1

SUSE-SU-2026:20015-1

SUSE-SU-2026:20021-1

SUSE-SU-2026:20039-1

SUSE-SU-2026:20059-1

SUSE-SU-2026:20473-1

SUSE-SU-2026:20496-1

USN-8029-1

USN-8029-2

USN-8029-3

USN-8030-1

USN-8048-1

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8095-5

USN-8100-1

USN-8125-1

USN-8126-1

USN-8165-1

USN-8261-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-40169

Weakness Enumeration

Related Identifiers

Affected Products

References · 1927