CVE-2025-71203

Description

In the Linux kernel, the following vulnerability has been resolved: riscv: Sanitize syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use array_index_nospec() to clamp this value after the bounds check to prevent speculative out-of-bounds access and subsequent data leakage via cache side channels.

CVSS Metrics

• v3.1•HIGH•Score: 7CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Trends

Current EPSS score: 0.02%• Percentile: 5%

Techniques & Countermeasures

• CWE-129•Improper Validation of Array Index

  The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

Affected Systems

• linux•linux

  ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < c45848936ebdb4fcab92f8c39510db83c16d0239 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 8b44e753795107a22ba31495686e83f4aca48f36 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 25fd7ee7bf58ac3ec7be3c9f82ceff153451946c | ≥ f0bddf50586da81360627a772be0e355b62f071e, < 33743ec6679aa364ee19d1afbaa50593e9e6e443 | ≥ f0bddf50586da81360627a772be0e355b62f071e, < c45848936ebdb4fcab92f8c39510db83c16d0239 | ≥ f0bddf50586da81360627a772be0e355b62f071e, < 8b44e753795107a22ba31495686e83f4aca48f36 | ≥ f0bddf50586da81360627a772be0e355b62f071e, < 25fd7ee7bf58ac3ec7be3c9f82ceff153451946c | 6.4

• linux•linux_kernel

  ≥ 6.4, < 6.12.70 | ≥ 6.13, < 6.18.10 | 6.19:rc1 | 6.19:rc2 | 6.19:rc3 | 6.19:rc4

References (4)

• https://git.kernel.org/stable/c/c45848936ebdb4fcab92f8c39510db83c16d0239
• https://git.kernel.org/stable/c/8b44e753795107a22ba31495686e83f4aca48f36
• https://git.kernel.org/stable/c/25fd7ee7bf58ac3ec7be3c9f82ceff153451946c
• https://git.kernel.org/stable/c/33743ec6679aa364ee19d1afbaa50593e9e6e443