Unity Linux 20.1050a Security Update: kernel (UTSA-2026-007041)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007041 advisory. In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006823)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006823 advisory. In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005648)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005648 advisory. In the Linux kernel, the following vulnerability has been resolved: riscv: process: fix kernel info leakage threadstruct's s12 may contain random kernel memory...

CVE-2022-50765 RISC-V: kexec: Fix memory leak of elf header buffer

In the Linux kernel, the following vulnerability has been resolved: RISC-V: kexec: Fix memory leak of elf header buffer This is reported by kmemleak detector: unreferenced object 0xff2000000403d000 size 4096: comm "kexec", pid 146, jiffies 4294900633 age 64.792s hex dump first 32 bytes: 7f 45 4c ...

PT-2025-51574

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel related to stack unwinding and Kernel Address Sanitizer KASAN checks. When unwinding the stack of a task other than the current task, KASAN may...

CVE-2022-50657 riscv: mm: add missing memcpy in kasan_init

In the Linux kernel, the following vulnerability has been resolved: riscv: mm: add missing memcpy in kasaninit Hi Atish, It seems that the panic is due to the missing memcpy during kasaninit. Could you please check whether this patch is helpful? When doing kasanpopulate, the new allocated...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988860)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988860 advisory. In the Linux kernel, the following vulnerability has been resolved: riscv: fix oops caused by irqsoff latency tracer The tracehardirqson,off require the caller to...

CVE-2023-53694

CVE-2023-53694 concerns a Linux kernel RISCV ftrace issue where enabling preemption could cause a jump to an address with mixed XLEN:12 bits, due to an AUIPC + JALR sequence. The vulnerability arises in the dynamic ftrace prologue when switching tasks and potentially changing the ftrace function ...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987237)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987237 advisory. In the Linux kernel, the following vulnerability has been resolved: riscv: fix oops caused by irqsoff latency tracer The tracehardirqson,off require the caller to...

Linux Distros Unpatched Vulnerability : CVE-2025-23135

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RISC-V: KVM: Teardown riscv specific bits after kvmexit During a module removal, kvmexit invokes arch specific disable call which disables AIA. However, we invo...

SUSE CVE-2025-38407

In the Linux kernel, the following vulnerability has been resolved: riscv: cpuopssbi: Use static array for bootdata Since commit 6b9f29b81b15 "riscv: Enable pcpu page first chunk allocator", if NUMA is enabled, the page percpu allocator may be used on very sparse configurations, or when requested...

DEBIAN-CVE-2025-38407

In the Linux kernel, the following vulnerability has been resolved: riscv: cpuopssbi: Use static array for bootdata Since commit 6b9f29b81b15 "riscv: Enable pcpu page first chunk allocator", if NUMA is enabled, the page percpu allocator may be used on very sparse configurations, or when requested...

CVE-2022-50225

CVE-2022-50225 concerns a Linux kernel issue on riscv where the uprobe handling incorrectly clears/sets the SR_SPIE flag around origin instruction execution. The description and connected sources state that the problematic sequence could occur when a page fault happens while the origin instructio...

SUSE CVE-2025-37966

In the Linux kernel, the following vulnerability has been resolved: riscv: Fix kernel crash due to PRSETTAGGEDADDRCTRL When userspace does PRSETTAGGEDADDRCTRL, but Supm extension is not available, the kernel crashes: Oops - illegal instruction 1 snip epc : settaggedaddrctrl+0x112/0x15a ra :...

UBUNTU-CVE-2023-53135

In the Linux kernel, the following vulnerability has been resolved: riscv: Use READONCENOCHECK in imprecise unwinding stack mode When CONFIGFRAMEPOINTER is unset, the stack unwinding function walkstackframe randomly reads the stack and then, when KASAN is enabled, it can lead to the following...

CVE-2024-53228 riscv: kvm: Fix out-of-bounds array access

In the Linux kernel, the following vulnerability has been resolved: riscv: kvm: Fix out-of-bounds array access In kvmriscvvcpusbiinit the entry-extidx can contain an out-of-bound index. This is used as a special marker for the base extensions, that cannot be disabled. However, when traversing the...

DEBIAN-CVE-2024-53075

In the Linux kernel, the following vulnerability has been resolved: riscv: Prevent a bad reference count on CPU nodes When populating cache leaves we previously fetched the CPU device node at the very beginning. But when ACPI is enabled we go through a specific branch which returns early and does...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to clear the PMU snapshot area before releasing data in RISC-V KVM, which could result in a null point...

DEBIAN-CVE-2022-48922

In the Linux kernel, the following vulnerability has been resolved: riscv: fix oops caused by irqsoff latency tracer The tracehardirqson,off require the caller to setup frame pointer properly. This because these two functions use macro 'CALLERADDR1' aka. builtinreturnaddress1 to acquire caller...

UBUNTU-CVE-2024-38667

In the Linux kernel, the following vulnerability has been resolved: riscv: prevent ptregs corruption for secondary idle threads Top of the kernel thread stack should be reserved for ptregs. However this is not the case for the idle threads of the secondary boot harts. Their stacks overlap with...