CVE-2025-40065

Summary

In the Linux kernel, the following vulnerability has been resolved:

RISC-V: KVM: Write hgatp register with valid mode bits

According to the RISC-V Privileged Architecture Spec, when MODE=Bare is selected,software must write zero to the remaining fields of hgatp.

We have detected the valid mode supported by the HW before, So using a valid mode to detect how many vmid bits are supported.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxfd7bb4a251dfc1da3496bf59a4793937c13e8c1f < d00b61cd37f4c183ce0edbc9f8ccf6d5430ea357affected
LinuxLinuxfd7bb4a251dfc1da3496bf59a4793937c13e8c1f < 2b351e3d04be9e1533f26c3464f1e44a5beace30affected
LinuxLinux5.16affected
LinuxLinux0 < 5.16unaffected
LinuxLinux6.17.3 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References