Acknowledged
Created: Aug 17, 2025
Updated: Aug 18, 2025
Found In Version: 10.24.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:EOL][EOL]bpf: Reject %p% format string in bprintf-like helpers[EOL][EOL]static const char fmt[] = "%p%";[EOL] bpf_trace_printk(fmt, sizeof(fmt));[EOL][EOL]The above BPF program isn't rejected and causes a kernel warning at[EOL]runtime:[EOL][EOL] Please remove unsupported %\x00 in format string[EOL] WARNING: CPU: 1 PID: 7244 at lib/vsprintf.c:2680 format_decode+0x49c/0x5d0[EOL][EOL]This happens because bpf_bprintf_prepare skips over the second %,[EOL]detected as punctuation, while processing %p. This patch fixes it by[EOL]not skipping over punctuation. %\x00 is then processed in the next[EOL]iteration and rejected.
CREATE(Triage):(User=pbi-cn) [CVE-2025-38528 (https://nvd.nist.gov/vuln/detail/CVE-2025-38528)
