CVE-2025-37846
arm64: mops: Do not dereference src reg for a set operation
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
In the Linux kernel, the following vulnerability has been resolved: arm64: mops: Do not dereference src reg for a set operation The source register is not used for SET* and reading it can result in a UBSAN out-of-bounds array access error, specifically when the MOPS exception is taken from a SET* sequence with XZR (reg 31) as the source. Architecturally this is the only case where a src/dst/size field in the ESR can be reported as 31. Prior to 2de451a329cf662b the code in do_el0_mops() was benign as the use of pt_regs_read_reg() prevented the out-of-bounds access.
| Vendor | linux |
| Product | linux |
| Ecosystems | |
| Industries | Technology |
| Published | May 9, 2025 |
| Last Updated | May 11, 2026 |
Stay Ahead of the Next One
Get instant alerts for linux linux
Be the first to know when new unknown vulnerabilities affecting linux linux are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Linux / Linux
2de451a329cf662beeba71f63c7f83ee24ca6642 < eec737e17e5567e08148550a7f1d94d495b9fb17 2de451a329cf662beeba71f63c7f83ee24ca6642 < 43267d934eacff6c70e15545d804ebbcab8a0bf5 2de451a329cf662beeba71f63c7f83ee24ca6642 < 5f6022a74147675124b781fdc056b291850e7786 2de451a329cf662beeba71f63c7f83ee24ca6642 < a13bfa4fe0d6949cea14718df2d1fe84c38cd113
Linux / Linux
6.7
References
git.kernel.org: https://git.kernel.org/stable/c/eec737e17e5567e08148550a7f1d94d495b9fb17 git.kernel.org: https://git.kernel.org/stable/c/43267d934eacff6c70e15545d804ebbcab8a0bf5 git.kernel.org: https://git.kernel.org/stable/c/5f6022a74147675124b781fdc056b291850e7786 git.kernel.org: https://git.kernel.org/stable/c/a13bfa4fe0d6949cea14718df2d1fe84c38cd113