8 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-40065
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RISC-V: KVM: Write hgatp register with valid mode bits According to the RISC-V Privileged Architecture Spec, when MODE=Bare is selected,software must write zero...
EUVD-2025-11162
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-39815
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RISC-V: KVM: fix stack overrun when loading vlenb The userspace load can put up to 2048 bits into an xlen bit stack buffer. We want only xlen bits, so check the...
CVE-2025-23135
The CVE-2025-23135 issue is in the Linux kernel for RISC-V KVM teardown. The root cause is an ordering flaw during module removal: aia_exit is invoked before kvm_exit, which can leave IRQ state inconsistent (percpu IRQ 31 still enabled) and prevent the KVM module from re-insertion. The published ...
CVE-2025-23135 RISC-V: KVM: Teardown riscv specific bits after kvm_exit
In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: Teardown riscv specific bits after kvmexit During a module removal, kvmexit invokes arch specific disable call which disables AIA. However, we invoke aiaexit before kvmexit resulting in the following warning. KVM...
CVE-2025-23135
In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: Teardown riscv specific bits after kvmexit During a module removal, kvmexit invokes arch specific disable call which disables AIA. However, we invoke aiaexit before kvmexit resulting in the following warning. KVM...
Linux Distros Unpatched Vulnerability : CVE-2024-47717
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: Don't zero-out PMU snapshot area before freeing data With the latest...
CVE-2024-53228
In the Linux kernel, the following vulnerability has been resolved: riscv: kvm: Fix out-of-bounds array access In kvmriscvvcpusbiinit the entry-extidx can contain an out-of-bound index. This is used as a special marker for the base extensions, that cannot be disabled. However, when traversing the...