CVE-2025-39815
- Source
- https://cve.org/CVERecord?id=CVE-2025-39815
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39815.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-39815
- Downstream
- Published
- 2025-09-16T13:00:16.250Z
- Modified
- 2026-05-15T11:54:29.564988840Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- RISC-V: KVM: fix stack overrun when loading vlenb
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
RISC-V: KVM: fix stack overrun when loading vlenb
The userspace load can put up to 2048 bits into an xlen bit stack buffer. We want only xlen bits, so check the size beforehand.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39815.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/6d28659b692a0212f360f8bd8a58712b339f9aac
- https://git.kernel.org/stable/c/799766208f09f95677a9ab111b93872d414fbad7
- https://git.kernel.org/stable/c/c76bf8359188a11f8fd790e5bbd6077894a245cc
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39815.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-39815
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git