VDB
DEBIAN-CVE-2025-40065
DEBIAN-CVE-2025-40065
PUBLISHED
In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: Write hgatp register with valid mode bits According to the RISC-V Privileged Architecture Spec, when MODE=Bare is selected,software must write zero to the remaining fields of hgatp. We have detected the valid mode supported by the HW before, So using a valid mode to detect how many vmid bits are supported.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | linux | 6.16.6-1, 0, 6.12.41-1 |
| Debian:13 | linux | *, 0, 6.12.38-1 |
| Debian:12 | linux | 6.4.11-1, *, * |
Timeline
- Oct 28, 2025 CVE Published
- Apr 28, 2026 CVE Updated