{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-71270", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-03-17T09:08:18.458Z", "datePublished": "2026-03-18T17:40:59.838Z", "dateUpdated": "2026-05-11T21:57:08.956Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-11T21:57:08.956Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: Enable exception fixup for specific ADE subcode\n\nThis patch allows the LoongArch BPF JIT to handle recoverable memory\naccess errors generated by BPF_PROBE_MEM* instructions.\n\nWhen a BPF program performs memory access operations, the instructions\nit executes may trigger ADEM exceptions. The kernel\u2019s built-in BPF\nexception table mechanism (EX_TYPE_BPF) will generate corresponding\nexception fixup entries in the JIT compilation phase; however, the\narchitecture-specific trap handling function needs to proactively call\nthe common fixup routine to achieve exception recovery.\n\ndo_ade(): fix EX_TYPE_BPF memory access exceptions for BPF programs,\nensure safe execution.\n\nRelevant test cases: illegal address access tests in module_attach and\nsubprogs_extable of selftests/bpf."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["arch/loongarch/kernel/traps.c"], "versions": [{"version": "dbcd7f5fafea64dbe588c4ec18bc309fde5d1e1c", "lessThan": "73ede654d9daa2ee41bdd17bc62946fc5a0258cb", "status": "affected", "versionType": "git"}, {"version": "dbcd7f5fafea64dbe588c4ec18bc309fde5d1e1c", "lessThan": "c49a28068363f3dca439aa5fe4d3b1f8159809fe", "status": "affected", "versionType": "git"}, {"version": "dbcd7f5fafea64dbe588c4ec18bc309fde5d1e1c", "lessThan": "c2ed4f71e9288f21d5c53ff790270758e60fa5f9", "status": "affected", "versionType": "git"}, {"version": "dbcd7f5fafea64dbe588c4ec18bc309fde5d1e1c", "lessThan": "9bdc1ab5e4ce6f066119018d8f69631a46f9c5a0", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["arch/loongarch/kernel/traps.c"], "versions": [{"version": "6.2", "status": "affected"}, {"version": "0", "lessThan": "6.2", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.124", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.70", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.10", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.2", "versionEndExcluding": "6.6.124"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.2", "versionEndExcluding": "6.12.70"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.2", "versionEndExcluding": "6.18.10"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.2", "versionEndExcluding": "6.19"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/73ede654d9daa2ee41bdd17bc62946fc5a0258cb"}, {"url": "https://git.kernel.org/stable/c/c49a28068363f3dca439aa5fe4d3b1f8159809fe"}, {"url": "https://git.kernel.org/stable/c/c2ed4f71e9288f21d5c53ff790270758e60fa5f9"}, {"url": "https://git.kernel.org/stable/c/9bdc1ab5e4ce6f066119018d8f69631a46f9c5a0"}], "title": "LoongArch: Enable exception fixup for specific ADE subcode", "x_generator": {"engine": "bippy-1.2.0"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: Enable exception fixup for specific ADE subcode\n\nThis patch allows the LoongArch BPF JIT to handle recoverable memory\naccess errors generated by BPF_PROBE_MEM* instructions.\n\nWhen a BPF program performs memory access operations, the instructions\nit executes may trigger ADEM exceptions. The kernel\u2019s built-in BPF\nexception table mechanism (EX_TYPE_BPF) will generate corresponding\nexception fixup entries in the JIT compilation phase; however, the\narchitecture-specific trap handling function needs to proactively call\nthe common fixup routine to achieve exception recovery.\n\ndo_ade(): fix EX_TYPE_BPF memory access exceptions for BPF programs,\nensure safe execution.\n\nRelevant test cases: illegal address access tests in module_attach and\nsubprogs_extable of selftests/bpf."}], "id": "CVE-2025-71270", "lastModified": "2026-03-19T17:16:21.520", "metrics": {}, "published": "2026-03-18T18:16:22.230", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/73ede654d9daa2ee41bdd17bc62946fc5a0258cb"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/9bdc1ab5e4ce6f066119018d8f69631a46f9c5a0"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/c2ed4f71e9288f21d5c53ff790270758e60fa5f9"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/c49a28068363f3dca439aa5fe4d3b1f8159809fe"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Awaiting Analysis"}

{"bugzilla": {"description": "kernel: LoongArch: Enable exception fixup for specific ADE subcode", "id": "2448681", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448681"}, "csaw": false, "details": ["No description is available for this CVE."], "name": "CVE-2025-71270", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2026-03-18T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2025-71270\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-71270\nhttps://lore.kernel.org/linux-cve-announce/2026031816-CVE-2025-71270-19ac@gregkh/T"]}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,b9d9a221bd14ed4b01d113701976fa376762c544)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,73ede654d9daa2ee41bdd17bc62946fc5a0258cb)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,c49a28068363f3dca439aa5fe4d3b1f8159809fe)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,c2ed4f71e9288f21d5c53ff790270758e60fa5f9)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,9bdc1ab5e4ce6f066119018d8f69631a46f9c5a0)"}}], "enrichment": {"confidence": 99.0, "confidence_source": "inferred", "scores": [{"score": 99.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Linux", "source": "cna", "vendor": "Linux"}, "product": "linux_kernel", "vendor": "linux"}, {"configurations": [{"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,6.1.*]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,6.6.*]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,6.12.*]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,6.18.*]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,*]"}}], "enrichment": {"confidence": 99.0, "confidence_source": "inferred", "scores": [{"score": 99.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Linux", "source": "cna", "vendor": "Linux"}, "product": "linux_kernel", "vendor": "linux"}], "analysis": {"en": {"generated_at": "2026-03-27T10:31:49.348743+00:00", "value": {"mitigation_remediation": ["Apply an updated LoongArch kernel that includes the BPF exception\u2011recovery patch.", "If an upgrade cannot be performed immediately, restrict BPF program loading to trusted users or disable BPF functionality until a patch is available."], "summary": {"action": "Immediate Patch", "impact": "Kernel Crash (Denial of Service)"}, "threat_synthesis": {"affected_systems": "The flaw affects all Linux kernels that run on the LoongArch architecture and do not include the patch that enables the exception handler to call the fixup routine. The patch was merged into mainline, so any distribution shipping a LoongArch kernel before that merge remains vulnerable. Kernels updated with the patched code are not affected.", "description_and_impact": "The vulnerability concerns the LoongArch implementation of the BPF JIT compiler in the Linux kernel. It arises because the architecture\u2011specific trap handler did not invoke the common exception\u2011recovery routine for recoverable ADE (Access Denied Exception) faults triggered by BPF_PROBE_MEM* instructions. When such an exception occurs, the kernel fails to provide a fixup entry and the BPF program terminates the kernel, resulting in a crash and loss of service. This is an improper exception handling weakness.", "risk_and_exploitability": "EPSS scores indicate a very low probability of exploitation (less than 1%) and the issue is not listed in CISA\u2019s KEV catalog, suggesting limited attacker interest. The impact of a successful exploit is a kernel crash that results in a denial of service. The likely attack vector would be from an entity that can load BPF programs (root or a user with CAP_SYSADMIN). No documented network\u2011based exploitation method exists."}}}}, "created": "2026-03-19T08:56:13.367790+00:00", "updated": "2026-03-27T15:48:25.312046+00:00", "vendors": ["linux", "linux$PRODUCT$linux_kernel"], "weaknesses": ["CWE-400", "CWE-416"]}