CVE-2025-37929

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> arm64: errata: Add missing sentinels to Spectre-BHB MIDR arrays<br /> <br /> Commit a5951389e58d ("arm64: errata: Add newer ARM cores to the<br /> spectre_bhb_loop_affected() lists") added some additional CPUs to the<br /> Spectre-BHB workaround, including some new arrays for designs that<br /> require new &amp;#39;k&amp;#39; values for the workaround to be effective.<br /> <br /> Unfortunately, the new arrays omitted the sentinel entry and so<br /> is_midr_in_range_list() will walk off the end when it doesn&amp;#39;t find a<br /> match. With UBSAN enabled, this leads to a crash during boot when<br /> is_midr_in_range_list() is inlined (which was more common prior to<br /> c8c2647e69be ("arm64: Make  _midr_in_range_list() an exported<br /> function")):<br /> <br /> | Internal error: aarch64 BRK: 00000000f2000001 [#1] PREEMPT SMP<br /> | pstate: 804000c5 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)<br /> | pc : spectre_bhb_loop_affected+0x28/0x30<br /> | lr : is_spectre_bhb_affected+0x170/0x190<br /> | [...]<br /> | Call trace:<br /> | spectre_bhb_loop_affected+0x28/0x30<br /> | update_cpu_capabilities+0xc0/0x184<br /> | init_cpu_features+0x188/0x1a4<br /> | cpuinfo_store_boot_cpu+0x4c/0x60<br /> | smp_prepare_boot_cpu+0x38/0x54<br /> | start_kernel+0x8c/0x478<br /> | __primary_switched+0xc8/0xd4<br /> | Code: 6b09011f 54000061 52801080 d65f03c0 (d4200020)<br /> | ---[ end trace 0000000000000000 ]---<br /> | Kernel panic - not syncing: aarch64 BRK: Fatal exception<br /> <br /> Add the missing sentinel entries.