The vulnerabilities of the functions sbi_cpu_start() and cpu_update_secondary_bootdata() in the Linux operating system’s kernel on RISC-V processors allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the functions sbicpustart in the module arch/riscv/kernel/cpuopssbi.c and cpuupdatesecondarybootdata in the module arch/riscv/kernel/cpuopsspinwait.c in the Linux operating system’s kernel on RISC-V processors is related to memory writing beyond the allocated buffer...