CVE-2025-39815

RISC-V: KVM: fix stack overrun when loading vlenb

Published: 9/16/2025 Last updated: 9/29/2025 Reserved: 4/16/2025

In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: fix stack overrun when loading vlenb The userspace load can put up to 2048 bits into an xlen bit stack buffer. We want only xlen bits, so check the size beforehand.

CNA assigner: Linux (416baaa9-dc9f-4396-8d5f-8c081fb06d67) Requested by: n/a

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (4)

Product	Vendor	Version
Linux	Linux	n/a
Linux	Linux	V4.0.17.0 and earlier
Linux	Linux	WCD9335
Linux	Linux	< publication

References (6)

https://git.kernel.org/stable/c/c76bf8359188a11f8fd790e5bbd6077894a245cc
https://git.kernel.org/stable/c/6d28659b692a0212f360f8bd8a58712b339f9aac
https://git.kernel.org/stable/c/799766208f09f95677a9ab111b93872d414fbad7
https://git.kernel.org/stable/c/c76bf8359188a11f8fd790e5bbd6077894a245cc
https://git.kernel.org/stable/c/6d28659b692a0212f360f8bd8a58712b339f9aac
https://git.kernel.org/stable/c/799766208f09f95677a9ab111b93872d414fbad7