CVE-2025-38466

UNKNOWN 0.0

perf: Revert to requiring CAP_SYS_ADMIN for uprobes

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: perf: Revert to requiring CAP_SYS_ADMIN for uprobes Jann reports that uprobes can be used destructively when used in the middle of an instruction. The kernel only verifies there is a valid instruction at the requested offset, but due to variable instruction length cannot determine if this is an instruction as seen by the intended execution stream. Additionally, Mark Rutland notes that on architectures that mix data in the text segment (like arm64), a similar things can be done if the data word is 'mistaken' for an instruction. As such, require CAP_SYS_ADMIN for uprobes.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jul 25, 2025
Last Updated	May 12, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

c9e0924e5c2b59365f9c0d43ff8722e79ecf4088 < d7ef1afd5b3f43f4924326164cee5397b66abd9c c9e0924e5c2b59365f9c0d43ff8722e79ecf4088 < c0aec35f861fa746ca45aa816161c74352e6ada8 c9e0924e5c2b59365f9c0d43ff8722e79ecf4088 < 8e8bf7bc6aa6f583336c2fda280b6cea0aed5612 c9e0924e5c2b59365f9c0d43ff8722e79ecf4088 < 183bdb89af1b5193b1d1d9316986053b15ca6fa4 c9e0924e5c2b59365f9c0d43ff8722e79ecf4088 < a0a8009083e569b5526c64f7d3f2a62baca95164 c9e0924e5c2b59365f9c0d43ff8722e79ecf4088 < d5074256b642cdeb46a70ce2f15193e766edca68 c9e0924e5c2b59365f9c0d43ff8722e79ecf4088 < ba677dbe77af5ffe6204e0f3f547f3ba059c6302

Linux / Linux

5.8

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/d7ef1afd5b3f43f4924326164cee5397b66abd9c git.kernel.org: https://git.kernel.org/stable/c/c0aec35f861fa746ca45aa816161c74352e6ada8 git.kernel.org: https://git.kernel.org/stable/c/8e8bf7bc6aa6f583336c2fda280b6cea0aed5612 git.kernel.org: https://git.kernel.org/stable/c/183bdb89af1b5193b1d1d9316986053b15ca6fa4 git.kernel.org: https://git.kernel.org/stable/c/a0a8009083e569b5526c64f7d3f2a62baca95164 git.kernel.org: https://git.kernel.org/stable/c/d5074256b642cdeb46a70ce2f15193e766edca68 git.kernel.org: https://git.kernel.org/stable/c/ba677dbe77af5ffe6204e0f3f547f3ba059c6302 lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html cert-portal.siemens.com: https://cert-portal.siemens.com/productcert/html/ssa-082556.html