Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Linux Kernel: RISC-V syscall indexing issue fixed
CVE-2025-71203
Summary
A security issue was found in the Linux kernel for RISC-V systems. An attacker could have potentially used this flaw to access memory they shouldn't have, but it's been fixed. No action is required from users, as the issue has been resolved in the latest kernel updates.
Original title
In the Linux kernel, the following vulnerability has been resolved:
riscv: Sanitize syscall table indexing under speculation
The syscall number is a user-controlled value used to index into the
s...
Original description
In the Linux kernel, the following vulnerability has been resolved:
riscv: Sanitize syscall table indexing under speculation
The syscall number is a user-controlled value used to index into the
syscall table. Use array_index_nospec() to clamp this value after the
bounds check to prevent speculative out-of-bounds access and subsequent
data leakage via cache side channels.
riscv: Sanitize syscall table indexing under speculation
The syscall number is a user-controlled value used to index into the
syscall table. Use array_index_nospec() to clamp this value after the
bounds check to prevent speculative out-of-bounds access and subsequent
data leakage via cache side channels.
Published: 14 Feb 2026 · Updated: 10 Mar 2026 · First seen: 6 Mar 2026